Disclosures:
Professional Reviews

The reviews found on GuideHaven consist of evaluations conducted by community reviewers. These assessments take into account the reviewers’ unbiased and knowledgeable analysis of the products and services being reviewed.

Ownership

GuideHaven is a leading cybersecurity review website with a team of experts experienced in testing and evaluating VPNs, antiviruses, password managers, parental controls, and software tools. Our reviews are available in 29 languages, making them accessible to a broad audience since 2018. To further support our readers in their pursuit of online security, we’ve partnered with Kape Technologies PLC, which owns popular products like ExpressVPN, CyberGhost, ZenMate, Private Internet Access, and Intego, all of which may be reviewed on our website.

Affiliate Commissions

GuideHaven contains reviews that follow the strict reviewing standards, including ethical standards, that we have adopted. Such standards require that each review will take into consideration the independent, honest, and professional examination of the reviewer. That being said, we may earn a commission when a user completes an action using our links, at no additional cost to them. On listicle pages, we rank vendors based on a system that prioritizes the reviewer’s examination of each service, but also considers feedback received from our readers and our commercial agreements with providers.

Review Guidelines

The reviews published on GuideHaven are written by community reviewers that examine the products according to our strict reviewing standards. Such standards ensure that each review prioritizes the independent, professional, and honest examination of the reviewer, and takes into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings we publish may also take into consideration the affiliate commissions we earn for purchases through links on our website.

News Heading

Rising Malware Threat: Bing Chat Responses Infiltrated by Malicious Ads

Shipra Sanganeria
Published by Shipra Sanganeria on October 02, 2024

Bing Chat, an AI-assisted search engine is facing a serious security issue, as cyber criminals use deceptive ads to lure unsuspecting users to download malwares.

Harnessing the capabilities of OpenAI’s GPT-4, Microsoft launched Bing Chat in February 2023. The interactive text and image search application within a few months achieved impressive user engagement numbers. In a period of six months, the AI powered search tool recorded over 1 billion chats.

The growing popularity of this tool as well as the possibility of incorporating ads into Bing Chat, made it quite popular among advertisers, hoping to reach a large user base.

The discovery was made by researchers at Malwarebytes, who demonstrated this malvertising technique. Users looking for software downloads were tricked into visiting counterfeit websites and prompted to install malicious installers directly from Bing Chat responses.

One of the methods used to display ads in Bing Chat conversations was present when a user hovered over a link, and an ad was displayed preceding the organic search result. The Malwarebytes researchers tried this method by asking the chat how to download the Advanced IP Scanner program used by network administrators.

Despite an ‘Ad’ label being displayed next to these links, users inadvertently would click this seemingly legitimate malvertising link, which would redirect them to the phishing sites.

According to the company, these websites check the users’ IP address, time zone, and various other system settings to filter virtual machines from real users. These users were then sent to fake sites mimicking official ones, while virtual ones were sent to decoy pages. The next step was to trick the users into downloading and installing the malicious installer.

‘’Threat actors continue to leverage search ads to redirect users to malicious sites hosting malware,’’ said the company. In this case, an unknown hacker had hacked into a legitimate Australian business ad account and created two separate ads.

The researchers also highlighted the need for users to stay vigilant when they click on links and visit websites. They also recommended use of security tools that provide web protection, help detect malware and block ads. This security incident was reported to Microsoft by Malwarebytes.

Did you like this article? Rate it!
 
 
 
 
 
I hated it I don’t really like it It was ok Pretty good! Loved it!
0 Voted by 0 users
Title
Comment
Thanks for your feedback