Hackers have been found distributing malware through fake versions of “Google Bard,” a fictitious AI writer supposedly created by Google. Researchers at ESET discovered an ad on Facebook promoting the AI writer, but several red flags indicated its fraudulent nature.
The ad contained poor grammar, spelling mistakes, and amateurish writing styles that didn’t align with Google’s standards. The link provided in the ad didn’t lead to a Google domain but redirected to a website impersonating Google, hosted by a Dublin-based firm named rebrand.ly.
Visiting the fake site while logged into a browser could potentially expose sensitive information. The site featured a download button that triggered the download of malware hosted on a personal Google Drive space, masked behind a file titled “GoogleAIUpdate.rar.” Antivirus programs identified the downloaded executable as malicious.
This incident highlights the trend of cybercriminals exploiting the popularity of AI-related technologies to distribute malware. Earlier instances, such as a scheme involving a fake ChatGPT app, also used platforms like Facebook to promote their scams. As these types of campaigns continue, users should remain cautious and verify the authenticity of sources before clicking on links or downloading files.
