Cybersecurity firm Palo Alto Networks released research on how ChatGPT-themed scams are on the rise as generative AI continues to grow in popularity. The research highlights scammers’ various methods to entice users into downloading malware or sharing sensitive information, including specific case studies and examples. Highlights include:
Palo Alto Unit 42 researchers are monitoring the trending topics, newly registered domains, and squatting domains related to ChatGPT, as it is one of the fastest-growing consumer applications in history. The dark side of this popularity is that ChatGPT is also attracting the attention of scammers seeking to benefit from using wording and domain names that appear related to the site.
Read more: Advanced ChatGPT, just what the doctor ordered?
Between November 2022 through early April 2023, we noticed a 910% increase in monthly registrations for domains related to ChatGPT. In this same time frame, the cybersecurity firm observed a 17,818% growth of related squatting domains from DNS Security logs. We also saw up to 118 daily detections of ChatGPT-related malicious URLs captured from the traffic seen in our Advanced URL Filtering system.
The report now present several case studies to illustrate the various methods scammers use to entice users into downloading malware or sharing sensitive information. As OpenAI released its official API for ChatGPT on March 1, 2023, Unit 42 has seen an increasing number of suspicious products using it. Thus, the study highlights the potential dangers of using copycat chatbots, in order to encourage ChatGPT users to approach such chatbots with a defensive mindset.
Moreover, the paper observed that Palo Alto Networks Next-Generation Firewall and Prisma Access customers with Advanced URL Filtering, DNS (Domain Name System) Security and WildFire subscriptions receive protections against ChatGPT-related scams. All mentioned malicious indicators (domains, IPs, URLs and hashes) are covered by these security services.
Click here for more on ChatGPT.