- Scammers send emails from legitimate OpenAI addresses to trick users
- Misleading organization names hide malicious links designed to capture sensitive information
- Businesses are targeted because multiple employees can receive malicious invitations simultaneously
Kaspersky has discovered a sophisticated scam that exploits OpenAI’s team invitation system to attack unsuspecting users.
Scammers register accounts and embed misleading links or phone numbers directly in the organization name field.
They then use the “invite your team” feature to send emails from legitimate OpenAI addresses, making the messages completely authentic.
Email content is misleading
Kaspersky warns that these emails can easily trick recipients into clicking malicious links or calling fraudulent numbers, which could lead to serious data or financial loss.
The content of these fraudulent emails varies, but the objectives remain consistent. Some messages claim that a subscription has been renewed for an unusually high sum, while others promote fraudulent offers, including adult services.
Kaspersky notes that attackers often combine email and voice tactics, using vishing to pressure recipients to act immediately.
The text of these emails often shows structural inconsistencies, but attackers rely on recipients ignoring these irregularities.
Businesses face higher risks because attackers can target multiple employees at the same time.
Kaspersky recommends treating all unsolicited invitations with suspicion, even if they appear to come from trusted platforms.
Users should carefully inspect all URLs before clicking, avoid calling numbers included in suspicious messages, and report any unusual activity to the service provider.
Users should enable multi-factor authentication on all accounts to reduce risk, but stronger protection also requires technical defenses.
Endpoint protection and configuration of strong firewalls remain essential, and immediate malware removal is necessary if interacting with a fraudulent link.
The attack shows how criminals can turn even trusted collaboration features into fraud tools.
To effectively avoid these threats, organizations and individuals must remain vigilant.
“This case highlights a vulnerability in how the platform’s features can be used for social engineering email attacks. By embedding misleading elements in seemingly innocuous fields such as organization names, scammers attempt to bypass traditional email filters and exploit users’ trust in reputable services,” said Anna Lazaricheva, senior spam analyst at Kaspersky.
“We urge all users to carefully review invitations and avoid clicking on embedded links without careful review. We also recommend that brands consider whether attackers could abuse their online services or platforms.”
Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds. Make sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp Also.
