Hackers are now using ChatGPT share links to deliver malware (www.neowin.net)

Researchers at Push Security have uncovered a malicious campaign dubbed "LLMShare," which uses the share links of popular chatbots like ChatGPT to distribute infostealer malware. Attackers exploit legitimate domains to create fake maintenance messages that entice users to download a malicious desktop app. By leveraging sponsored Google ads that target common search terms related to ChatGPT, victims are misled into clicking on seemingly genuine links, ultimately directing them to a site that mimics the OpenAI domain. This site cleverly bypasses web filters and firewalls by retaining its legitimate appearance. The significance of this discovery highlights a growing trend of cybercriminals utilizing AI-driven platforms and their functionalities to launch sophisticated attacks. These tactics demonstrate how threat actors can exploit the trust associated with well-known tools to generate convincing phishing schemes, undermining user security. The malware, which targets both Windows and macOS users, incorporates advanced techniques to evade detection. This incident underlines the urgent need for enhanced vigilance in the AI/ML community, as well as the necessity for users to be aware of such tactics in the face of increasingly inventive cyber threats.