With the explosion of ChatGPT and other AI-based software technologies, it’s only natural to expect a few bad actors to try and cash in on the trend. Meta, a web giant and leader in digital security, recently reported the discovery of multiple new malware strains that are being disguised as ChatGPT browser extensions and productivity applications. These malware, including the Ducktail and NodeStealer variants, have the potential to harvest account credentials from the devices they’re installed on and cause a great deal of damage. As a result, Meta has since removed over a thousand different links to these malicious browser extensions.
It’s worth noting that some of these applications, while appearing to integrate AI features, are actually intended to harvest account credentials and other data. Even when 2-factor authentication is enabled, more advanced malware can evade this security measure and be able to automatically scan through accounts linked to the original account. This threat is made worse in the case of business accounts, where credit card information is usually associated with them.
Meta is a tech giant that has a long history in providing digital security services. The company has a malware threat landscape page that provides information regarding the various threats associated with ChatGPT and other generative AI. To help protect yourself and your business, it is wise to be an informed user and check for any suspicious activity. Don’t forget to keep an eye out for the latest news and updates from Meta to protect yourself from the latest threats.