Skip to main content

Beware: many ChatGPT extensions and apps could be malware

ChatGPT fever has overtaken the internet, and rightly so since it’s such a powerful new tool. Unfortunately, the most sought-after content is often fertile ground for hackers and scammers.

In a recent video, cybersecurity-focused YouTuber John Hammond warned that many ChatGPT extensions and apps could contain malware. It’s a valid point, and we should all use caution when installing desktop browser add-ons and mobile apps.

OpenAI's ChatGPT blog post is open on a computer monitor, taken from a high angle.
Photo by Alan Truly

When you visit a webpage, such as ChatGPT, you know who can access the information you provide. OpenAI is a known quantity that most people respect, even if there is some concern about the rapid pace of OpenAI’s updates to the public.

Recommended Videos

The privacy policies of browser extensions and apps vary dramatically, however. Even more alarming, regardless of the privacy claims, you might not recognize the developer or know whether they are trustworthy. It’s easy to claim your information will not be shared or sold, but who will enforce that policy?

Hammond notes that it goes deeper than the information you might voluntarily provide to the extension or app. Hackers have ways of bypassing security features, particularly when doing so with software you’ve installed on your device.

Citing a recent Guardio report on a fake ChatGPT Chrome extension, Hammond explains that the extension contained malware that used a backdoor to access Facebook account information.

By stealing numerous Facebook accounts, the malware created bots that made advertisements promoting the extension. The ads drove traffic to the extension, generating more bots that posted more ads.

The goal of the self-replicating malware was to collect user information to sell on the dark web. Google took down the extension, but another soon popped up, and the battle against malware is seemingly unending.

Most ChatGPT Extensions Are Just Malware

The critical takeaway from the video is to be careful with every browser extension you install. Any software that resides on your computer has greater access than a webpage. The same is true of mobile apps.

If you want to use ChatGPT, you can do so from OpenAI’s website. GPT-4, the OpenAI technology behind ChatGPT, powers Bing Chat and is available in a tab on any Bing Search. Bing Chat is also available on your phone via the Bing app or Edge browser.

If you still want to use a browser extension or app that adds extra capabilities or makes the advanced AI more convenient, proceed with caution. Check the privacy policy, read reviews, and learn more about the developer before trusting that your data will be secure and private.

Alan Truly
Alan Truly is a Writer at Digital Trends, covering computers, laptops, hardware, software, and accessories that stand out as…
Radiohead’s Thom Yorke among thousands of artists who issue AI protest
Thom Yorke on stage.

Leading actors, authors, musicians, and novelists are among 11,500 artists to have put their name to a statement calling for a halt to the unlicensed use of creative works to train generative AI tools like OpenAI’s ChatGPT, describing it as a “threat” to the livelihoods of creators.

The open letter, comprising just 29 words, says: “The unlicensed use of creative works for training generative AI is a major, unjust threat to the livelihoods of the people behind those works, and must not be permitted.”

Read more
The best AI chatbots to try: ChatGPT, Gemini, and more
Bing Chat shown on a laptop.

The idea of chatbots has been around since the early days of the internet. But even compared to popular voice assistants like Siri, the generated chatbots of the modern era are far more powerful.

Yes, you can converse with them in natural language. But these AI chatbots can generate text of all kinds, from poetry to code, and the results really are exciting. ChatGPT remains in the spotlight, but as interest continues to grow, more rivals are popping up to challenge it.
OpenAI ChatGPT and ChatGPT Plus

Read more
ChatGPT’s new Canvas feature sure looks a lot like Claude’s Artifacts
ChatGPT's Canvas screen

Hot on the heels of its $6.6 billion funding round, OpenAI on Thursday debuted the beta of a new collaboration interface for ChatGPT, dubbed Canvas.

"We are fundamentally changing how humans can collaborate with ChatGPT since it launched two years ago," Canvas research lead Karina Nguyen wrote in a post on X (formerly Twitter). She describes it as "a new interface for working with ChatGPT on writing and coding projects that go beyond simple chat."

Read more