// Alert

Chatgpt threat report

Threat actors are executing an active malvertising campaign leveraging ChatGPT's shared content and code-rendering features to host phishing pages on legitimate chatgpt.com/s/ domains. Victims lured via malicious Google ads and SEO poisoning are presented with fake service outage warnings prompting desktop app downloads, which deliver infostealer malware. The campaign exploits trusted ChatGPT domains and conditional rendering evasion to bypass security scanning. Both ChatGPT and Claude users are being targeted with variant attacks.

// Get alerts for Chatgpt