TLDR
Threat actors are exploiting ChatGPT's content sharing feature to display fake OpenAI outage pages, luring users into downloading malware disguised as the ChatGPT desktop application. The campaign, dubbed 'LLMShare,' uses Google sponsored...
How it works
Threat actors are exploiting ChatGPT's content sharing feature to display fake OpenAI outage pages, luring users into downloading malware disguised as the ChatGPT desktop application. The campaign, dubbed 'LLMShare,' uses Google sponsored...
Red flags
- : Sponsored search results claiming ChatGPT is 'temporarily unavailable' Download prompts from non openai.com domains (openew[.]app) Generic outage message with 'Show code' and 'Remix' controls visible
What to do
- 1: Always download ChatGPT desktop app from openai.com or official app stores only Avoid clicking sponsored ads in search results
- 2navigate directly to known URLs Keep antivirus software updated and scan any unexpected downloads before execution
Source
bleepingcomputer
Source reviewed by Mythos Forensic Team
https://www.bleepingcomputer.com/news/security/chatgpt-share-links-abused-to-host-fake-outage-pages-to-deliver-malware/FAQ
Is ChatGPT Share Links Abused to Host Fake Outage Pages Delivering Malware a real scam pattern?
Yes. Treat the message, call, or payment request as suspicious until you verify it through an official channel.
What are the first warning signs?
: Sponsored search results claiming ChatGPT is 'temporarily unavailable' Download prompts from non openai.com domains (openew[.]app) Generic outage message with 'Show code' and 'Remix' controls visible
What should I do first?
: Always download ChatGPT desktop app from openai.com or official app stores only Avoid clicking sponsored ads in search results; navigate directly to known URLs Keep antivirus software updated and scan any unexpected downloads before execution
Can LegalAudit check my case?
Yes. Start a free chat and paste the message, link, sender, or payment details for triage.