Researchers from Palo Alto Networks Unit 42 observed an increase in malicious versions of the popular Android chatbot app ChatGPT ever since the AI model gained notoriety for its revolutionary capabilities. With the release of GPT 3.5 by OpenAI, these variants entered the scene and afflicted users who downloaded malicious applications.
According to researchers, two active malware, ‘SuperGPT,’ a Meterpreter Trojan, and ‘ChatGPT,’ an application, send messages to “premium-rate numbers” in Thailand, resulting in charges for the victim.
These applications were downloadable via the website, connections in email correspondence, and the Google Play Store. The parcel was reported for removal to the tech behemoth.
ChatGPT Replicas Found on Google Play Store
These applications use an OpenAI logo to deceive users into believing they are authentic. According to the Unit 42 report, it can send SMS messages to “Premium-rate numbers” that cost more than standard phone numbers and are used in exchange for a service (such as consumers providing information).
The report hypothesizes that while the threat actors behind this application are currently generating revenue, it could evolve into a fraud in the future.
In addition, the report indicates that these applications can steal data, eavesdrop on users, and cause financial losses for the victim. This malevolent imitation of the potent AI tool can gain remote access to an Android smartphone.
In the meantime, ChatGPT is well-known for its conversational responses to user requests. In the past, counterfeit versions of the app were used to defraud consumers and make money.
How can you protect yourself from malicious ChatGPT replicas?
- Enable Google Play Protect on your device from the Play Store
- Install a reputable antivirus on your mobile device.
- Only acquire apps from reputable app stores and developers