Cybercriminals are exploiting the popularity of ChatGPT to spread malware through hijacked Facebook accounts, cyber intelligence firm, CloudSEK, said on Monday.

CloudSEK in its investigation has found the presence of 13 Facebook pages or accounts, including those with Indian content, totalling over 5 lakh followers, which have been compromised and are being used to disseminate the malware via Facebook ads.

Also read: OpenAI admits data breach at ChatGPT, private data of premium users exposed

"Cybercriminals are capitalising on the popularity of ChatGPT, exploiting Facebook's vast user base by compromising legitimate Facebook accounts to distribute malware via Facebook ads, putting users' security at risk. Our investigation has uncovered 13 compromised pages with over 500k followers, some of which have been hijacked since February 2023. We urge users to be vigilant and aware of such malicious activities on the platform," CloudSEK cyber intelligence analyst Bablu Kumar said.

Also read
The logo of Sun Pharmaceutical Industries Ltd.

Ransomware attack: Sun Pharma says business operations impacted 

Sixty-one per cent of all cyber attacks reported in 2022 were targeted at small businesses

Arete sees a spike in Trigona ransomware activity

CloudSEK claims to have uncovered at least 25 websites engaged in the nefarious practice of impersonating the OpenAI.com website, which are malicious sites that are duping individuals into downloading and installing harmful software, posing a severe risk to their security and privacy.

Also read: How ChatGPT can strengthen the cybersecurity armour

"The malicious malware is not only capable of stealing sensitive information, such as PII, system information, and credit card details, from the user's device but also has replication capabilities to spread across systems through removable media. With the ability to escalate privileges and persistently remain on the system, it poses a significant threat," Kumar said.

Related Topics
comment COMMENT NOW