ChatGPT share links abused to host fake outage pages to deliver malware
Patch: Block chatgpt.com/s/ URLs and monitor for custom HTML content to stop fake outage phishing.
Patch: Block chatgpt.com/s/ URLs and monitor for custom HTML content to stop fake outage phishing.
Summary
Threat actors have hijacked ChatGPT’s LLMShare feature to host counterfeit outage pages that redirect users to a malicious download portal.
The campaign, dubbed “LLMShare,” uses Google ads to lure people searching for ChatGPT, landing them on a chatgpt.com/s/ link that displays a fabricated outage notice. The notice claims the web version is unavailable and urges users to download a desktop app, which leads to openew.app, an impersonated OpenAI download site that installs malware on macOS and Windows. The attackers generate the fake page with custom HTML and CSS rendered by a ChatGPT prompt, and the page includes “Show code” and “Remix with ChatGPT” controls. Similar abuse has been seen with Claude Artifacts, where shared conversations host ClickFix‑style lures. The malicious site uses cloaking to show different content to targeted victims, while appearing harmless to security scanners. The malware payload can execute commands to detect virtual machines and may deliver infostealers. The attack demonstrates how AI platform sharing features can be weaponised for phishing and malware distribution.
Key changes
- Attack uses chatgpt.com/s/ links to host fake outage pages
- Fake outage notice redirects to openew.app download portal
- Page generated with custom HTML/CSS via ChatGPT prompt
- Includes “Show code” and “Remix with ChatGPT” controls
- Malware installs on macOS and Windows, detects VMs
- Cloaking shows different content to targeted victims
- Similar abuse seen with Claude Artifacts
- Attack uses Google ads to drive traffic