Scam Attacks Taking Advantage of the Popularity of the Generative AI Wave

July 26, 2024, 2:01 p.m.

Description

This analysis explores the evolution of network threats associated with generative AI (GenAI) terms, correlating with key milestones like ChatGPT's launch and integration into Bing. It examines suspicious domain registrations capitalizing on the GenAI trend, their textual patterns, and traffic volumes. Case studies detail attack types including potentially unwanted programs, spam distribution, and monetized domain parking. The research highlights the need for enhanced detection and mitigation of GenAI-related scams as public interest surges.

External References

https://unit42.paloaltonetworks.com/cybersquatting-using-genai-keywords/
https://otx.alienvault.com/pulse/66a3a639a6e39b44c93091c0
Tags
phishing
2024-07-26
spoofed domains

Date

  • Created: July 26, 2024, 1:35 p.m.
  • Published: July 26, 2024, 1:35 p.m.
  • Modified: July 26, 2024, 2:01 p.m.

Indicators

  • bad2294523c7abd42c3184d1e513bf851cb649a4acd9543cdf5d54d21f52c937
  • my-gpt-cpa.com
  • oha-chatbot.xyz
  • msftchatgpt.com
  • ketlenpack.online
  • internationaljobsite.com
  • janoub-hightech.com
  • gptsotre.com
  • geminisuperintelligence.com
  • gpt-vision.com
  • gemini-superintelligence.com
  • gemini-agi.com
  • gemini-super-intelligence.com
  • gemini-agents.com
  • gemini-addons.com
  • chatgptproapp.com
  • chatgptapp999.cn
  • chatgptios.cn
  • chatgptapp888.cn
  • chatgptapp000.cn
  • chatgpt188.cn
  • chatgpt178.cn
  • chatgpt138.cn
  • chatgpt008.cn
  • chatgpt009.cn
  • chatgpt006.cn
  • chatgpt005.cn
  • chatgpt0002.cn
  • chatgpt000.cn
  • bardassai.com
  • 33115c.com
Download all indicators here!

Attack Patterns

  • T1109
  • T1600
  • T1217
  • T1107
  • T1588
  • T1608
  • T1583
  • T1567
  • T1189
  • T1555
  • T1199
  • T1598
  • T1518
  • T1105
  • T1083
  • T1071
  • T1204
  • T1553
  • T1190
  • T1059