In the fast-paced world of artificial intelligence (AI), it’s easy to get caught up in the hype and excitement surrounding the latest developments. However, with the advancements in technology comes an increased risk of scams and cybercriminal activity. In this article, we will be examining a recent scam involving fake AI advertisements and the potential dangers they pose to unsuspecting individuals.
The story begins with a curious internet user who stumbled upon a shortened URL that seemed out of place. Instead of the expected Google reference, the link led to a service called rebrand.ly, which had no apparent connection to Google. This raised suspicions and prompted further investigation into the content of the advertisement.
Upon closer examination, it became evident that the ad was poorly written and lacked any mention of Google. The comment section below the ad appeared to be filled with positive reviews, all praising “the app.” However, these comments seemed suspiciously synchronized, as if they had all been written at the same time. The user’s suspicions continued to grow.
To dig deeper into the scam, the user decided to access the link in an anonymous browser window. Surprisingly, the link led to an actual Google site. However, it was soon clear that the site’s content was not provided by Google but rather by the scammers themselves. The poorly translated page title and grammatical errors suggested that the attackers behind the campaign were based in Vietnam.
Further investigation revealed that the scammers had created a downloadable file to trick users into thinking it was an official Google offering. The file, a RAR archive named GoogleAIUpdata.rar, was password-protected to prevent immediate detection by antivirus software. However, the password was conveniently provided on the download page, allowing the user to see the contents of the archive.
Inside the archive, an installer in the MSI format called Google Bard AI setup.msi was found. By creating a file hash of the installer, the user was able to search for it on VirusTotal, a platform that scans files for potential threats. Alarmingly, 26 out of 59 vendors flagged the file as malicious. ESET, one of the antivirus vendors, provided further information, identifying the file as JS/ExtenBro.Agent.EK, a JavaScript agent known for altering browser settings and displaying unwanted ads.
In conclusion, this scam is an attempt by cybercriminals to capitalize on the AI hype and make a quick profit. While the campaign may not be sophisticated, it is still a cause for concern, as unsuspecting individuals may fall victim to the allure of the latest technologies. It’s important for users to be vigilant and skeptical of advertisements that seem too good to be true.
This incident also highlights the limitations of relying solely on tech giants like Facebook and Google to provide a safe browsing environment. While they strive to maintain clean platforms, it’s impossible for them to guarantee 100% protection against scams and malware. Individuals need to take responsibility for their own online security and be equipped with the knowledge to spot potential scams and investigate them.
By sharing this story, we hope to raise awareness of the dangers posed by fake AI advertisements and provide individuals with the tools to protect themselves from falling victim to such scams. It’s essential to stay informed and stay vigilant in the ever-evolving landscape of technology and cybercrime.