Someone is using ChatGPT to try to scam Product Hunt websites
*******************
Hi team
I am sending this email regarding the vulnerability which I have found on your website and want to disclose it. It will be helpful for your website's security.
Let me know if you have any active bug bounty program or if there is any compensation for reporting vulnerabilities?
PS: This email is from a genuine person, not a bot and if you are not comfortable here on Via mailbox then I am ready to communicate with you Via LinkedIn.
Have a good day
Looking forward to your positive response
Best regards
Kamran
*******************
Given it sounds like an intelligent person who may very well have found a vulnerability, I was inclined to reply.
But after some analysis of my website's logs, I can see they:
- Arrived to my site directly from Product Hunt
- Pasted (as opposed to typed) the message, spending (in total) less than 90 seconds on the site (it was a human)
When I googled part of their message, I can see evidence they’ve used a ChatGPT-like tool to correct their grammar: https://www.comingup.io/s/15765
These don’t prove it to be fake, but it’s enough to convince me.
Pre ChatGPT, such an attempt would be i) too obviously fake based on the poorly written message, ii) too costly (in time, freelance $, or risk) for a scammer to bother having their message corrected for grammar before sending.
1 comment
[ 3.5 ms ] story [ 15.6 ms ] threadSince a few years, Chrome (and Firefox?) has a quite good checker. I think it does not fix gramar.
Gmail has a very good orthographical and gramar checker. It even autocorrect some words and make suggestions for other. (Even in cases where a word is correctly written, but it makes no sense, and the actual word is a typo away.) It's too good that it's a little scary.