Stop using ChatGPT on Windows PCs or MacBooks and make simple check immediately
Regular users of ChatGPT must stay on high alert and ensure they always use official versions of this popular AI-powered service. With more and more people using this platform, it appears to have become a prime target for hackers and those getting caught out could find their personal data exposed. According to the team at Malwarebytes, users are being tricked into downloading a fake version of ChatGPT, via the web.
Once installed, it gives attackers access to online accounts, browser sessions, saved passwords, and even cryptocurrency holdings.
Both Windows and MacBook users appear to be affected, with unique versions of the malware created for each popular operating system.
"A convincing fake website is impersonating OpenAI's ChatGPT download page and infecting visitors with malware designed to steal passwords, browser data, cryptocurrency wallets, and other sensitive information," the Malwarebytes team explained.
"The site, closely mimics OpenAI's real ChatGPT download experience and offers what appear to be official desktop apps for both Windows and macOS. Instead, Windows users receive a credential-stealing malware loader, while Mac users get Odyssey Stealer, a fork of Atomic Stealer (AMOS), a well-known macOS malware family associated with cryptocurrency theft."
It's now vital that all users stay alert and only use official software from ChatGPT.
Anyone who searched online for "ChatGPT download" and clicked on an ad or unfamiliar result, may have given attackers access to online accounts.Malwarebytes says anyone who thinks they may have installed a fake ChatGPT app must follow some simple advice.
This includes signing out of important accounts using each service's "sign out everywhere" option. This includes email, banking, cloud storage, GitHub, Discord, Telegram, and cryptocurrency exchanges.
Change passwords starting with primary email accounts and monitor bank accounts and payment cards for suspicious activity.
Finally, it's a good idea to check the operating system on devices.
"Reinstall the operating system," Malwarebytes explained.
"The Windows sample showed PowerShell command-and-control behavior, while the macOS payload may have captured the user's login password. A clean reinstall is the safest recovery path."