Global cybersecurity firm Sophos uncovered a number of fake apps that extorted hundreds of dollars from users disguised as ChatGPT-based chatbots. In its latest report, the company said such malicious apps are popping up on Google Play and Apple’s App Store. A free version with zero features and constant ads lures users into signing up for subscriptions that cost hundreds of dollars a year, according to the report. Sophos calls such apps “freeware” that display ads until the user signs up for a subscription. Such apps take advantage of the fact that unsuspecting users don’t pay attention to costs. Fleeceware is designed to be of little use after the free trial ends. Therefore, users delete these apps without realizing that they are still falling into the trap of monthly or weekly payments. His X-ops team at a cybersecurity firm investigated five of his apps for fleeceware allegedly based on Open AI chatbot algorithms. In some cases, fleeceware developers named their apps “Chat GBT” to improve their ranking in app stores. OpenAI makes his ChatGPT free for online users, but these apps cost between $10 and $70 per year. Chat GBT for iOS costs $6 a week, but another app called Genie encouraged users to sign up for a $70 yearly subscription, according to the report. Sophos said the apps overcharge users for features that are otherwise free. They use coercive techniques to lure users into signing up for subscriptions. These malicious apps usually offer free trials, but users are forced to sign up for a subscription after being fed up with constant ads and restrictions.
The freeware app is said to be based on Open AI chatbot algorithms. (Reuters)
{{^userSubscribed}} {{/userSubscribed}}
{{^userSubscribed}} {{/userSubscribed}}
These apps inflate their ratings on app stores through fake reviews and insist on asking users to rate them. Sean Gallagher, Sophos’s lead threat researcher, said in a statement that the app was designed to stay within what Google and Apple allow in terms of service. It rarely gets rejected in reviews because it doesn’t violate security or privacy rules.
After the report, some fleeceware apps mentioned in the report have been removed, but some continue to appear. Gallagher urged users to be aware that such apps exist and read carefully before hitting the subscribe button.
