LLMShare: Attackers are turning AI chatbot pages into malware delivery platforms
Attackers are exploiting AI chatbot platforms to deliver malware through shared content features. They create fake installation guides that redirect users to malicious downloads hosted on trusted domains. This new method bypasses security checks, making it difficult for users to identify the threats.
- ▪Attackers are using AI chatbot platforms like ChatGPT and Claude to distribute malware via shared content.
- ▪Malicious links are promoted through sponsored ads on search engines, targeting macOS and Windows users.
- ▪The latest technique involves creating fake pages that mimic legitimate service disruptions to trick users into downloading malware.
Opening excerpt (first ~120 words) tap to expand
Attackers are abusing the shared content features of AI chatbot platforms — ChatGPT and Claude — to deliver malware through pages hosted on legitimate, trusted domains, distributing the malicious links via sponsored malvertising ads on search engines. Shared conversations on AI chatbot platforms have become the latest delivery mechanism for malware campaigns targeting macOS and Windows users. Attackers create content on platforms like ChatGPT and Claude that appears to offer installation guidance or service updates, then drive traffic to it via search engine results in the form of malvertising and SEO poisoning.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at Push Security.
Discussion
0 commentsMore from Push Security
