There has been another discovery of a fake ChatGPT extension that has been created in order to harvest Facebook session cookies and hijack accounts. This extension, called "ChatGPT For Google", was able to be installed over 9,000 times before it was finally removed. The extension was originally uploaded on February 14, 2023, and was propagated through malicious Google search results. Once the extension is installed, it has the ability to capture Facebook-related cookies and send it to a remote server. This gives the threat actor the ability to change the password, alter the profile name and picture, and even use it to disseminate extremist propaganda. This is the second fake ChatGPT extension to be found, with the other one being distributed through sponsored posts on social media.