All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

LLMShare campaign abuses ChatGPT share links and Google ads to deliver malware via fake outage pages

By

BleepingComputer

2d ago· 1 min readenNews
Bagel score 80 of 100
80/100
Golden Brown
Bagelometer

Sesame, salt, and substance. A flagship bake.

Score80TypenewsSentimentnegative

Summary

Threat actors are abusing ChatGPT's content-sharing feature and Google ads to promote fake OpenAI outage pages that redirect users to a malicious site (openew[.]app) delivering malware disguised as the ChatGPT desktop app. This campaign, dubbed LLMShare, uses legitimate chatgpt.com shared pages to host fake outage notices, luring victims searching for ChatGPT via Google ads.

Key quotes

· 4 pulled
Threat actors are abusing ChatGPT's content-sharing feature and Google ads to promote fake OpenAI outage pages that push users toward malware disguised as the ChatGPT desktop app.
The LLMShare campaign uses a legitimate chatgpt.com shared page and then redirects victims to a cloaked download site at openew[.]app that delivers malicious installers.
LLMShare abuses ChatGPT's shared content feature to host a fake outage notice.
Google ads lure users searching for ChatGPT to the malicious shared page.
Snippet from the RSS feed
Threat actors are abusing ChatGPT’s content-sharing feature and Google ads to promote fake OpenAI outage pages that push users toward malware disguised as the ChatGPT desktop app. The LLMShare campaign uses a legitimate chatgpt.com shared p...

You might also wanna read

Security Flaw in ChatGPT for Google Sheets Enables Data Exfiltration via Prompt Injection

OpenAI's ChatGPT extension for Google Sheets, which has over 185,000 downloads in less than a month, is vulnerable to indirect prompt inject

promptarmor.com·18h ago

Security Researchers Discover ChatGPT Vulnerability That Could Extract Sensitive Gmail Data

Security researchers from Radware discovered a vulnerability called 'Shadow Leak' that allowed ChatGPT to be manipulated into extracting sen

The Verge·8mo ago

This devious malware has jumped from Meta over to Google Ads and YouTube to spread - here's how to stay safe

techradar.com·8mo ago

How OpenAI's ChatGPT Share Feature Exposed Over 100,000 Chats Publicly

The article discusses how OpenAI's 'Share' feature for ChatGPT conversations inadvertently led to over 100,000 chats becoming publicly acces

growtika.com·10mo ago

ChatGPT User Conversations Leaking into Google Search Console, Revealing Private Data

ChatGPT conversations containing personal and sensitive information have been leaking into Google Search Console, a tool typically used by d

arstechnica.com·6mo ago

AI Chatbots Mislead Users with Wrong URLs for Major Companies

AI-powered chatbots are recommending incorrect URLs for major companies, creating a phishing opportunity for criminals. Netcraft highlighted

theregister.com·11mo ago