The extension accesses Meta’s Graph API to seize data from the Facebook Business accounts. The users, unaware of the compromise, continue to utilize this extension with their Facebook Business account active in the background. On installing the extension, browser metadata and cookies are compromised. Multiple users wanting to easily access ChatGPT from any website installed an extension from the official Google Chrome store without knowing it was a malicious extension. This extension has also stolen browser cookies, including session tokens from Google, Twitter, YouTube, and other active services. This “legitimate fake” browser extension is designed to harvest data from Facebook Business accounts. This fake ChatGPT extension is the perfect example of a malicious extension that can easily bypass your browsers to harvest personal data. What can this ChatGPT extension do to your browsers?Įxtensions are risky for browsers because of their ability to steal user credentials, browsing data, cookies, and so on. That’s right, a fake ChatGPT-based extension that was available for download from the official Google store gave legitimate easy access to ChatGPT but at the same time gave backdoor access to malware for gaining authorization over thousands of Facebook Business accounts.
Twenty-thousand downloads and thousands of Business Facebook accounts compromised, all from one “legitimate fake” extension How exciting does that sound? Read the full story here. Chat Generative Pre-trained Transformer (ChatGPT) is now available on the official Google Chrome store as a browser extension, giving you easy access to this sophisticated chatbot.
0 kommentar(er)
