Beware of Bing Chat and its AI conversations that can lure you into malware traps

Beware of Bing Chat and its AI conversations that can lure you into malware traps

How to avoid this malware menace

by Robert Puente

Every day, AI seems to flip a coin between being our tech hero or digital villain. One day, it’s saving the day; another day, it’s stirring up some trouble. In this mix, Bing Chat made a splash by teaming up with OpenAI, turning the mundane task of searching into a friendly chat. With Microsoft leading the way, these tech giants were able to integrate the capabilities of ChatGPT into the Bing search engine. 

This integration was meant to change the search engine game. Now, instead of staring at a blank search bar, like other typical search engines, you’re chatting with what feels like an old buddy. But while many were expecting to experience this new way to search in amazement, some shady stuff started cooking behind the scenes.

open ais chat gpt app on a phone

MORE: GOOGLE’S AI IS TRYING TO ONE-UP CHAGPT AND BING WITH EVERY DAY AI FEATURES 

 

Ads join the chat

In March, like most companies that offer free services, Bing began rolling out ads. It was Microsoft’s way to make a dime or two in between your chats. Unfortunately, this move was like setting out a welcome mat for some not-so-welcome guests.

Credit: Microsoft

 

Hackers sneak malicious ads into Bing Chat

Here’s where things got dicey. Some crafty scammers whipped up ads that looked like legit links for downloading the ‘Advanced IP Scanner.’ This tool basically helps a person see all the devices hopping around on their network. 

Now, when curious minds turned to Bing Chat for guidance on downloading this tool, instead of being led to the official download site, they were faced with a malicious ad playing dress-up. 

Click on it, and you’ll find yourself on a fake download site, ready to serve up a hefty portion of malware instead of the handy scanner tool you were after. This twisted ad-venture was like a wolf in sheep’s clothing, waiting to pounce the moment you hit ‘download.’  We’ve reached out to Microsoft to understand how this issue is being addressed and have not yet received guidance by the time this story was published.



person using phone

MORE: YOUR SECRETS MAY NOT BE SAFE WITH CHATBOTS LIKE CHATGPT

 

Fake Advanced IP Scanner is malware in disguise 

The download offered on this site isn’t the authentic and legit Advanced IP Scanner but disguised malware. When downloaded and run, one of the files in the installer connects to an external server to fetch the payload. Although the exact payload hasn’t been identified, it’s a shady setup that often leads to data theft or allows bad actors to sneak into other accounts or networks.

the security logo

MORE: BEST ALTERNATIVES TO CHATGPT

 

Staying safe

The Bing Chat scam shines a light on the cunning ways scammers are weaving their dark web. So, how to stay safe? 

Be wary:  Do not trust ads, especially those offering downloads. Even in a friendly chat setting, keep the guard up. 

 

Think before you click: Double-check URLs to ensure they lead to official, reputable sites before hitting that download button. 

 

Have good antivirus software on all your devices: The best way to protect yourself from having your data breached is to install antivirus protection on all your devices. Having good antivirus software on your devices will alert you of any malware in your system that could possibly be downloaded by clicking on the bogus Advanced IP Scanner ad, warn you against clicking on any malicious links in phishing emails, and ultimately protect you from being hacked.  

Special for CyberGuy Readers:  My #1 pick is TotalAV, and you can get a limited-time deal for CyberGuy readers: $19 your first year (80% off) for the TotalAV Antivirus Pro package.  

Get my picks for the best 2023 antivirus protection winners for your Windows, Mac, Android & iOS devices.

Best Antivirus Protection 2024

 

Use identity theft protection: If you did click malware and think your personal information has been compromised, you may consider using Identity Theft protection.  Identity Theft protection companies can monitor personal information like your home title, Social Security Number (SSN), phone number, and email address and alert you if it is being sold on the dark web or used to open an account. They can also assist you in freezing your bank and credit card accounts to prevent further unauthorized use by criminals. 

See my tips and best picks on how to protect yourself from identity theft.

 

Have strong passwords and use 2-factor authentication: Using the same password across multiple platforms will always make you more vulnerable because if one account gets hacked, they all get hacked. And 2-factor authentication is an extra shield preventing hackers from getting into your accounts. Make sure to use a password manager to keep track of all your passwords.

 

Invest in data removal services: If you want to protect your online privacy and security, you might consider using a removal service that can help you delete your personal data from hundreds of sites and prevent hackers from exploiting your information.

While no service promises to remove all your data from the internet, having a removal service can be effective if you want to constantly monitor and automate the process over a longer period of time.

Special for CyberGuy Readers (60% off):  Incogni offers A 30-day money-back guarantee and then charges a special CyberGuy discount only through the links in this article of $6.49/month for one person (billed annually) or $13.19/month for your family (up to 4 people) on their annual plan and get a fully automated data removal service, including recurring removal from 175+ data brokers.  I recommend the family plan because it works out to only $4.12 per person per month for year-round coverage. It’s an excellent service, and I highly recommend at least trying it out to see what it’s all about.

Use the code: CYBERGUY at checkout to get an exclusive discount – click here.

See my tips and best picks for removing yourself from the internet

Best services for removing your personal information from the Internet

 

 

Kurt’s key takeaways

The Bing Chat escapade leaves us with more than a few breadcrumbs to follow. It’s a peek into how our digital chit-chats can take a left turn into some shady alleys. And while the tech landscape keeps morphing, the cat-and-mouse game between us and the scam artists gets a new playground.

 In this chat-fueled digital age, have you ever clicked on something that took you somewhere you didn’t expect? Or bumped into an online scam that left you second-guessing your click? Or have you ever used an AI-powered chatbot? Let us know in the comments below. 

FOR MORE OF MY SECURITY ALERTS, SUBSCRIBE TO MY FREE CYBERGUY REPORT NEWSLETTER HERE.

 

Answers to the most asked CyberGuy questions:

 

 

Copyright 2024 CyberGuy.com.  All rights reserved.  CyberGuy.com articles and content may contain affiliate links that earn a commission when purchases are made.


   

Leave a Comment

GET MY FREE CYBERGUY REPORT
Subscribe to receive my latest Tech news, security alerts, tips and deals newsletter. (We won't spam or share your email with anyone else.)

By signing up, you agree to our Terms of Service and Privacy Policy. You may unsubscribe at any time.

Tips to avoid our newsletters going to your junk folder