ChatGPT use is becoming mainstream, and not just for fun (to chat or, say, to ask for The Hobbit<\/em> in the form of a Shakespearean sonnet \u2014 why not?), but also for business. With the help of chatbots, you can quickly fill websites with content, create product descriptions, generate quests for games, and do many other things to help people of various professions in their everyday work.<\/p>\n Unsurprisingly, the ChatGPT servers were quickly overloaded, so Open AI had to increase their capacity. The company soon attracted investment from Microsoft<\/a>, and now ChatGPT has been integrated into Bing<\/a>, albeit with restrictions<\/a>. In response, Google rushed to roll out its own neural network, Bard<\/a>, which has similar capabilities but was not considered by the company to be fully ready for market launch.<\/p>\n We\u2019ve already written about how ChatGPT will change the world of cybersecurity<\/a>, but for now at least the use of chatbots in phishing attacks or malware development remains at the theoretical stage. In practice, however, ChatGPT is already being used as bait to spread malware.<\/p>\n Why are scammers suddenly using ChatGPT as bait? Simply because the service is hugely popular.<\/p>\n Although ChatGPT is technically free, it\u2019s not always easy to access it. First, to register an account on the OpenAI website, you need to enter your e-mail address and phone number. But not all country codes are accepted: ChatGPT registration is currently unavailable in Russia, China, Egypt, Iran and some other countries. So not everyone can get an account easily.<\/p>\n Second, even if you managed to create an account on the OpenAI website, it\u2019s not a given that you\u2019ll be able to actually use ChatGPT: the service is almost always overloaded with users wanting to try out the AI, ask it to write a marketing blurb, or give it some other tasks. The inflow of users was so great that OpenAI introduced a subscription plan<\/a> with priority access and faster text generation for US$20 a month.<\/p>\n High demand and low availability. That\u2019s enough for scammers.<\/p>\n Kaspersky experts have uncovered a malicious campaign exploiting the growing popularity of ChatGPT. Fraudsters create groups on social networks that convincingly mimic, if not official OpenAI accounts, then at least communities of enthusiasts. These groups publish equally persuasive posts: say, that ChatGPT hit one million users faster than any other service. At the bottom of the post is a link for supposedly downloading a ChatGPT desktop client.<\/p>\n Impressive stats and a \u201chandy\u201d link\u00a0\u2014 just how we like it<\/p><\/div>\n Also posted in these groups are fake credentials for the precreated accounts that are said to provide access to ChatGPT. To motivate potential users even further, the attackers say that each account already has US$50 on its balance, which can be spent on using the chatbot. It all feels like a genuine opportunity to use ChatGPT without the trouble of creating an account, and even to get premium features for free: just download the desktop client and sit back for the ride.<\/p>\n Roll up, roll up, get your desktop chatbot while you can!<\/p><\/div>\n You can probably guess what happens next, but we\u2019ll tell you anyway. Clicking the link with a very plausible URL opens a well-made site inviting you to download ChatGPT for Windows. It\u2019s not the official site, of course, but very like the original. If you click on the download button, an archive with an executable file is indeed downloaded.<\/p>\n The scam site is a carbon copy of the original, only instead of the \u201cTry ChatGPT\u201d button there is a \u201cDownload for Windows\u201d button<\/p><\/div>\n If this archive is unpacked and the executable file run, then, depending on the version of Windows, the user sees either a message saying installation failed for some reason, or no message at all\u00a0\u2014 at which point the process seems to end. \u201cShame I didn\u2019t get to use a precreated account with premium features<\/em>\u201c, the user will think, and forget about the incident \u2014 probably resorting to creating a regular account on the real ChatGPT site.<\/p>\n If you see this message (or no message at all), the Trojan installed successfully<\/p><\/div>\n In fact, installation did not fail: a stealer Trojan<\/a> is installed on the user\u2019s computer, from where it pinches account credentials stored in Chrome, Edge, Firefox, Brave, C\u00f4cC\u00f4c (popular in Vietnam), and other browsers. We\u2019ve dubbed it Trojan-PSW.Win64.Fobo<\/strong>.<\/p>\n The Trojan\u2019s creators are interested in Facebook, TikTok, and Google cookies and accounts \u2014 in particular business accounts. The virus steals usernames and passwords, then, on finding a business account in one of these services, it tries to get additional information, such as how much money was spent on advertising from the account and what its current balance is.<\/p>\n According to our data, the attackers target the international market \u2014 the \u201cChatGPT desktop client\u201d has already been spotted in Asia, Africa, Europe and America.<\/p>\n For starters, note that there\u2019s no official desktop, mobile, or other client for ChatGPT\u00a0\u2014 only the web version. Amusingly, the chatbot itself makes this very point when asked to write a blog post about this scam campaign.<\/p>\n What ChatGPT itself thinks of this scam campaign<\/p><\/div>\n There\u2019s also no need to use \u201cprecreated\u201d accounts, of course. Currently, OpenAI\u2019s only paid feature is a monthly subscription with priority access, otherwise access to ChatGPT is completely free. So you can register a real ChatGPT account for free, no strings attached. Even if your phone number is no good due to restrictions on some countries, you can ask a friend abroad to buy you a disposable SIM card or use a temporary phone number \u2014 you only need it once, to activate the account. There are plenty of services that offer temporary phone numbers for receiving verification codes by text: just google \u201cone-time phone number\u201d.<\/p>\n The main thing is to make sure you land on the official site (https:\/\/chat.openai.com<\/a>). To do that, don\u2019t follow a link, rather enter the URL in the address bar yourself.<\/p>\n And have a good security solution<\/a> installed on your computer \u2014 ChatGPT is only gaining popularity, and attackers are bound to come up with more campaigns centered on this revolutionary new chatbot. Sure, vigilance is vital, but sometimes even the most attentive and super-prepared fall for phishing or well-faked sites, so it\u2019s better to play it safe. All Kaspersky security solutions<\/a> detect Trojan-PSW.Win64.Fobo<\/strong> and keep it off your computer.<\/p>\nWhat attracts scammers to ChatGPT<\/h2>\n
The desktop client that never was<\/h2>\n
![\"Impressive](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/92\/2023\/02\/22054817\/chat-gpt-stealer-win-client-01.png\")
<\/a>![\"Roll](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/92\/2023\/02\/22054835\/chat-gpt-stealer-win-client-02.png\")
<\/a>![](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/92\/2023\/02\/22054945\/chat-gpt-stealer-win-client-03.jpg\")
<\/a>![\"If](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/92\/2023\/02\/22055113\/chat-gpt-stealer-win-client-04.png\")
<\/a>How to use ChatGPT safely<\/h2>\n
![\"What](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/92\/2023\/02\/22055202\/chat-gpt-stealer-win-client-05.png\")
<\/a>