• Business

    Small business security warning – new malware is spoofing tools such as ChatGPT, Microsoft Office and Google Drive, so be on your guard

    AnyFans Posted on

    By Sead Fadilpašić

    Copyright techradar

    Small business security warning - new malware is spoofing tools such as ChatGPT, Microsoft Office and Google Drive, so be on your guard

    Skip to main content

    Tech Radar Pro

    Tech Radar Gaming

    Close main menu

    the business technology experts

    België (Nederlands)

    Deutschland

    North America

    US (English)

    Australasia

    New Zealand

    View Profile

    Search TechRadar

    Expert Insights

    Website builders

    Web hosting

    Best web hosting
    Best office chairs
    Best website builder
    Best antivirus
    Expert Insights

    Don’t miss these

    SMBs are being hit by malicious productivity tools – Zoom and ChatGPT spoofed by hackers

    Hackers are using fake Zoom or Microsoft Teams invites to spy on all your workplace activity

    ​’A CRM for cybercriminals’ – SpamGPT makes cybercriminals’ wildest dreams come true with business-grade marketing tools and features

    Malicious URLs and phishing scams remain a constant threat for businesses – here’s what can be done

    Hackers are distributing a fake PDF Editor loaded with TamperedChef credential stealing malware

    Microsoft warns dangerous PipeMagic backdoor is being disguised as ChatGPT desktop app – here’s what we know

    Hackers are using fake NDAs to hit US manufacturers in major new phishing scam

    ChatGPT hit by a zero-click, server-side vulnerability that criminals can use to siphon sensitive data – here’s how to stay safe

    Be careful where you click in Google search results – it could be damaging malware

    ClickFix fake error message malware spikes over 500%, takes second place as the most abused attack vector

    Enterprise security faces new challenge as attackers master art of digital impersonation

    Still use Skype at work? Bad news, hackers are targeting it with dangerous malware

    Hackers are cracking mobile browsers to bypass security – here’s how they do it and how to stay safe

    Your employee logins are more valuable to criminals than ever – here’s how to keep them protected

    Hackers are looking to steal Microsoft logins using some devious new tricks – here’s how to stay safe

    Small business security warning – new malware is spoofing tools such as ChatGPT, Microsoft Office and Google Drive, so be on your guard

    Sead Fadilpašić

    23 September 2025

    Are you sure you’re downloading the right ChatGPT?

    When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

    (Image credit: wk1003mike / Shutterstock)

    Cybercriminals spoof trusted tools like ChatGPT and Office to target small businesses with malware
    PUAs and fake apps hitting SMBs hardest
    Backdoors, Trojans, and downloaders dominate threat types across Europe and Africa

    Cybercriminals are constantly abusing the trust small and medium-sized businesses (SMB) have in certain tools to try and smuggle malware onto their IT infrastructure, experts have warned.

    A report from Kaspersky has claimed ChatGPT, Microsoft Office apps, and the Google Workspace suite are among the most spoofed products as hackers try and do their worsr.
    It found companies are being bombarded with fake applications – in almost a quarter of incidents (24%) across Europe, the cybercriminals tried to deploy a backdoor. Trojans (17%) and downloaders (16%) are also rather popular. In Africa, backdoors dominate with more than half of all recorded incidents (55%), followed by DangerousObjects (highly suspicious files or behaviors that are not yet classified under a specific malware category – 14%), and trojans (13%).

    You may like

    SMBs are being hit by malicious productivity tools – Zoom and ChatGPT spoofed by hackers

    Hackers are using fake Zoom or Microsoft Teams invites to spy on all your workplace activity

    ​’A CRM for cybercriminals’ – SpamGPT makes cybercriminals’ wildest dreams come true with business-grade marketing tools and features

    Backdoors, trojans, and more
    “Small businesses face enterprise-level threats, often with startup-level budgets,“ says Marc Rivero, Lead Security Researcher at the Global Research and Analysis Team (GreAT) at Kaspersky.

    “The key is knowing where to focus their limited resources for maximum protection. The best defense against sophisticated malware isn’t the most expensive tool – it’s understanding how attackers think and closing the doors they’re looking for.”
    In Europe, Austria was the most attacked country, taking up 40% of all detected cases in which Potentially Unwanted Applications (PUAS) and other malware were disguised as trusted tools.
    Italy (25%), Germany (11%), Spain (10%), and Portugal (6%) rounded up the top five, with notable mentions being France, and the UK. Africa’s Austria in this context is Morocco with 41% of all detected PUAs targeting SMBs. Tunisia (24%), Algeria (16%), and Senegal (7%) were said to also be heavily impacted.

    Are you a pro? Subscribe to our newsletter
    Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
    Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.
    Hackers have always leaned onto passing trends to try and deploy malware. When ChatGPT first emerged, it did not have an app – just an in-browser interface. Cybercriminals saw this as an opportunity to advertise – via stolen Facebook Business accounts – GPT apps for both desktop and mobile, through which they distributed infostealers, backdoors, and various trojans.
    You might also like

    Fake ChatGPT and NovaLeads clones deliver ransomware as hackers exploit AI hype and SEO for malicious gain
    Take a look at our guide to the best authenticator app
    We’ve rounded up the best password managers

    Sead Fadilpašić

    Social Links Navigation

    Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

    You must confirm your public display name before commenting

    Please logout and then login again, you will then be prompted to enter your display name.

    SMBs are being hit by malicious productivity tools – Zoom and ChatGPT spoofed by hackers

    Hackers are using fake Zoom or Microsoft Teams invites to spy on all your workplace activity

    ​’A CRM for cybercriminals’ – SpamGPT makes cybercriminals’ wildest dreams come true with business-grade marketing tools and features

    Malicious URLs and phishing scams remain a constant threat for businesses – here’s what can be done

    Hackers are distributing a fake PDF Editor loaded with TamperedChef credential stealing malware

    Microsoft warns dangerous PipeMagic backdoor is being disguised as ChatGPT desktop app – here’s what we know

    Latest in Security

    Insurance firm AIL allegedly hit in cyberattack – hackers claim info on over 150,000 users stolen, here’s what we know

    Top electric car charger firm confirms data breach, tells users to be on their guard

    Car giant Stellantis confirms data breach after third-party hit by cyberattack

    Hackers are using GPT-4 to build a virtual assistant – here’s what we know

    Scammers build fake FBI crime reporting portals to steal personal info – warns FBI

    Ransomware hackers could be targeting GoAnywhere MFT once again – here’s what we know

    Latest in News

    Forget crypto scams – NordVPN’s new tool helps you keep your funds safe

    Ghost of Tsushima players can now unlock exclusive merchandise with PlayStation’s new Franchise Rewards program

    The next State of Play happens tomorrow, and it has a deep dive into one of the most mysterious PS5 exclusives

    People in Arizona will soon need to prove their age to access adult sites – and critics warn of privacy risks

    Ananta looks like the free Grand Theft Auto 6 alternative we’ve all been waiting for

    Fortnite’s newest collaboration invites players to the Daft Punk Experience featuring a ‘fully interactive playground’ this weekend

    LATEST ARTICLES

    People in Arizona will soon need to prove their age to access adult sites – and critics warn of privacy risks

    Forget crypto scams – NordVPN’s new tool helps you keep your funds safe

    One of Amazon’s top rated 4K monitors is down to its lowest price yet – so act now to bag the 27-inch Sceptre

    This tiny PC is the best computer under $200, and its CPU is faster than Apple’s M1 Pro

    Black Friday starts early at Walmart – here’s everything you need to know about its October sale

    TechRadar is part of Future US Inc, an international media group and leading digital publisher. Visit our corporate site.

    Contact Future’s experts

    Terms and conditions

    Privacy policy

    Cookies policy

    Advertise with us

    Web notifications

    Accessibility Statement

    Future US, Inc. Full 7th Floor, 130 West 42nd Street,

    Please login or signup to comment

    Please wait…

    You Might Also Like