Cybersecurity News in Asia

Features
- Featured
  
  AI adoption in India: A balancing act worth chatting about
  
  Thursday, April 25, 2024, 2:53 PM Asia/Singapore | Features, Newsletter
- Featured
  
  AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming
  
  Monday, April 22, 2024, 4:40 PM Asia/Singapore | Case Study, Features
- Featured
  
  What businesses need to know about SEO poisoning
  
  Tuesday, April 16, 2024, 4:55 PM Asia/Singapore | Features
News
- Featured
  
  How medical devices manufacturer Tuttnauer protects patient and personal-data safety
  
  Tuesday, April 23, 2024, 5:22 PM Asia/Singapore | Case Study, News
- Featured
  
  How much of automated internet traffic contains malicious activity?
  
  Monday, April 22, 2024, 9:02 AM Asia/Singapore | Cyberthreat Landscape, News, Newsletter
- Featured
  
  Large language models have their strengths and weaknesses: analysis
  
  Monday, April 22, 2024, 8:56 AM Asia/Singapore | News
Opinions
Tips
Whitepapers
Awards 2024
Directory
E-Learning

News

Beware of imitation ChatGPT android apps in the wild

By CybersecAsia editors | Friday, June 23, 2023, 5:07 PM Asia/Singapore

Usually downloaded outside of official Android app stores, the malware apps can saddle victims with premium-SMS charges and data leak problems.

Following the release of OpenAI’s ChatGPT v3.5 and v4.x, cybercriminals have been riding on the popularity wave by targeting Android smartphone users eager to improve access to the chatbot.

According to Palo Alto Networks analysts, there has been a surge in malware mobile apps masquerading as ChatGPT or some improved variant of it.

The firm has classified two clusters of active malware of this nature: a “Meterpreter” trojan disguised as a “SuperGPT” app; and another type of app disguised as ChatGPT but actually sends premium-rate text messages to numbers in Thailand, resulting in charges for the victims that end up in scammers’ coffers.

Considering that Android users can download applications from various sources other than the official Google Play store, there is potential for users to obtain applications that have not been vetted by Google. This opens up opportunities for scammers to bait users to download malicious software that:

impersonate ChatGPT: This surge coincided with the release of OpenAI’s GPT-3.5 and GPT-4, targeting users interested in ChatGPT.
claim to be a “SuperGPT” app: In actual fact, the app is a trojan malware that enables remote access to infected Android devices upon successful exploitation.
contain digital code-signing certificates associated with an attacker identified as “Hax4Us”: The certificate, linked to entities located in Delhi, India, has been used across multiple malware samples investigated by Palo Alto Networks cyber researchers.
masquerade as ChatGPT-themed apps: In actual fact the malware sends chargeable SMS messages to premium-rate numbers in Thailand. These numbers incur charges for the victims, facilitating scams and fraudulent activities.

Overall, the threat of mobile malware linked to trending topics and products highlights the critical importance of guarding our mobile devices from casual downloading of apps of dubious origins.

By remaining vigilant and taking proactive steps to safeguard our devices, we can help prevent the spread of dangerous malware.

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Secure Access Service Edge (SASE) Solutions for Today’s Work-From-Anywhere (WFA) Environment
Organizations are turning to Secure Access Service Edge (SASE) solutions for securing remote work environments, …Download Whitepaper
Identity Has Breached the Ecosystem
This whitepaper explores the dual nature of identity in cybersecurity, emphasizing its role in both …Download Whitepaper
Fortanix Buyers Guide for Modern Key Management and Data Security
This document underscores the pressing challenges in key management and data securityDownload Whitepaper
Fortanix Data Risk Management – Using Tokenization to Secure Your Data
In today's digital world, organizations prioritize data security. To protect sensitive information, they use tokenization, …Download Whitepaper

Middle-sidebar-banner

Case Studies

How medical devices manufacturer Tuttnauer protects patient and personal-data safety
In running a cloud-based portal to link its smart medical equipment, the firm has also …Read more
AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming
To test the safety/security of a generative AI feature, what unchartered bugs and human testing …Read more
Real estate logistics provider GLP steps up to zero trust architecture
With its physical and digital footprint growing, the global firm’s outdated legacy security stack has …Read more
Identity security woes now a thing of the past for Heng Leong Hang
The retail chain was grappling with numerous cyber risks in its IT infrastructure until it …Read more

Cybersecurity News in Asia

Featured

AI adoption in India: A balancing act worth chatting about

Featured

AI vulnerability testing: Knowing the In’s and Out’s of proper red teaming

Featured

What businesses need to know about SEO poisoning

Featured

How medical devices manufacturer Tuttnauer protects patient and personal-data safety

Featured

How much of automated internet traffic contains malicious activity?

Featured

Large language models have their strengths and weaknesses: analysis

Beware of imitation ChatGPT android apps in the wild

Usually downloaded outside of official Android app stores, the malware apps can saddle victims with premium-SMS charges and data leak problems.

Related Posts

Leave a reply Cancel reply

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Middle-sidebar-banner

Case Studies

Bottom sidebar