TLDR
A convincing clone of OpenAI's ChatGPT download page at openew[.]app is tricking Windows and Mac users into installing info stealing malware. The site mirrors OpenAI's branding, dark theme, and download buttons, then serves platform...
How it works
A convincing clone of OpenAI's ChatGPT download page at openew[.]app is tricking Windows and Mac users into installing info stealing malware. The site mirrors OpenAI's branding, dark theme, and download buttons, then serves platform...
Red flags
- Domain mimics but is not openai.com or chatgpt.com (here openew[.]app ). Unsigned installer delivered as a raw .exe or .dmg from a non official site. Fake password prompts or CAPTCHAs appearing right after launching the app
What to do
- 1Only download ChatGPT from chatgpt.com/download or the official Microsoft Store. Never enter your system or wallet password into a prompt triggered by a downloaded app. If you ran the installer, disconnect from the network, change all sto
Source
malwarebytes
Source reviewed by Mythos Forensic Team
https://www.malwarebytes.com/blog/threat-intel/2026/05/fake-chatgpt-download-site-infects-windows-and-mac-users-with-malwareFAQ
Is Fake ChatGPT download site spreads Odyssey Stealer and Windows credential malware a real scam pattern?
Yes. Treat the message, call, or payment request as suspicious until you verify it through an official channel.
What are the first warning signs?
Domain mimics but is not openai.com or chatgpt.com (here openew[.]app ). Unsigned installer delivered as a raw .exe or .dmg from a non official site. Fake password prompts or CAPTCHAs appearing right after launching the app
What should I do first?
Only download ChatGPT from chatgpt.com/download or the official Microsoft Store. Never enter your system or wallet password into a prompt triggered by a downloaded app. If you ran the installer, disconnect from the network, change all sto
Can LegalAudit check my case?
Yes. Start a free chat and paste the message, link, sender, or payment details for triage.