A new malicious Chrome extension, ChatGPT Ad Blocker, has been discovered on the Google Chrome Web Store, designed to steal user conversations with the ChatGPT AI chatbot. This threat emerged shortly after OpenAI began introducing advertisements for its free-tier users. The extension, identified by DomainTools, aimed to trick users into believing they were blocking ads while secretly harvesting their private prompts and AI responses, with further coverage provided by HackRead.The ChatGPT Ad Blocker extension employed a DOM cloning technique to copy and filter conversations, focusing on text longer than 150 characters. This stolen data was then sent to a private Discord channel via a bot named Captain Hook, where hackers could access it. The extension also checked a GitHub file hourly for remote instructions, allowing attackers to alter their methods discreetly.The developer behind this malicious tool is linked to popular AI platforms Writecream and AI4ChatCo, which collectively claim over 1.5 million users. Suspicious websites such as blockaiads.com, openadblock.com, and gptadblock.com have also been associated with this scam.Source:HackRead
Get essential knowledge and practical strategies to use AI to better your security program.
