Facebook owner Meta has observed that a significant number of malware creators are exploiting the growing interest in ChatGPT to trick unsuspecting victims. The head of information security at Meta has noticed that bad actors consider the AI-based chatbot to be the “new crypto,” and the social media company is making preparations to prevent potential misuse.
Facebook’s Parent Company Reports an Increase in Malware Utilizing Chatgpt as Inspiration
According to a report quoted by Reuters, Meta, the corporation responsible for Facebook, discovered that malicious software purveyors are exploiting public interest in Chatgpt, Openai’s AI-powered chatbot, to trick users into downloading harmful applications and browser extensions.
Meta has identified over 1,000 malicious links and approximately 10 malware families that have been promoted as Chatgpt tools since March. The company likened the occurrence to crypto-themed scams and noted that some of the malware included functioning Chatgpt features alongside abusive files.
At a press conference, Meta’s Chief Information Security Officer, Guy Rosen, stated that “Chatgpt is the new crypto” for these malicious actors. During the same briefing, Meta executives disclosed that the company is taking measures to protect itself against various potential issues of abuse related to generative AI technologies like Chatgpt.
Reuters reported that authorities worldwide are concerned about the growing popularity and rapid advancement of platforms like the Microsoft-funded chatbot, as they may facilitate the propagation of online disinformation campaigns.
Meta executives believe that it is still early for instances of generative AI being used in information operations. However, Chief Information Security Officer Guy Rosen stated that he expects some malicious actors to use such technologies to expedite and amplify their activities.
Following their meeting in Japan, digital ministers of G7 countries issued a statement agreeing that their developed nations should adopt risk-based AI regulations while supporting the advancement of AI technologies.
AI-Themed Lures Used to Spread DuckTail Malware, Meta Takes Action
In an attempt to compromise businesses with access to Facebook ad accounts, attackers distributing the DuckTail malware have increasingly used AI-themed lures, according to Meta. DuckTail, which has targeted Facebook users since 2021, steals browser cookies and hijacks logged-in Facebook sessions to obtain information from the victim’s Facebook account, including account information, location data, and two-factor authentication codes.
The malware also enables the threat actor to take over any Facebook Business account that the victim can access. Meta attributed the distribution of DuckTail to threat actors in Vietnam on Wednesday and reported that it had sent cease-and-desist letters to those responsible for the operation and informed law enforcement.

Similar to DuckTail, NodeStealer is a new piece of malware that Meta discovered in January that targets Windows-based browsers to collect cookies and saved login information to hack Facebook, Gmail, and Microsoft Outlook accounts. The company took swift action against the malware, which it also attributed to Vietnamese threat actors, by submitting takedown requests with domain registrars and hosting providers that aided in its distribution within two weeks of identifying the malware.
According to Nguyen and Victory, these actions successfully disrupted the malware, and no new samples of malware in the NodeStealer family have been observed since February 27 of this year. Meta has also introduced new features to assist business users of its products in preventing malware attacks, such as a new support tool that walks individuals through the process of identifying and removing malware, as well as new controls for business accounts that manage, audit, and restrict who can become an account administrator.
Furthermore, Meta will launch Facebook at Work accounts later this year, which will enable business users to log in and operate Business Manager without a personal account, preventing attacks that originate from a compromised personal account.
Final Thoughts
Meta, the parent company of Facebook, is taking measures to prevent the exploitation of the growing interest in ChatGPT by malicious actors. The company has observed that over 1,000 malicious links and around 10 malware families have been promoted as ChatGPT tools since March.
Meta is likening this to the rise of crypto-themed scams and is preparing to prevent potential misuse of generative AI technologies like ChatGPT. The company has taken action against the spread of DuckTail malware using AI-themed lures and discovered a new malware called NodeStealer, which it swiftly acted against. Meta has also introduced new features to assist business users in preventing malware attacks.

Ken Emmanuel is a Blockchain Content writer, a Web3 Enthusiast and a Social Media Management Strategist, he likes writing educative contents to help people gain more knowledge and get inspired. The growth of any organization he work with is always his priority. He is a Geographer by profession and loves reading.