The LLMShare campaign exploits ChatGPT's content-sharing feature by publishing custom HTML outage notices on legitimate chatgpt.com shared links. Users searching for ChatGPT are redirected via malicious Google ads to these shared pages, which falsely claim the web service is down and prompt users to download a desktop app. The download link leads to a fake OpenAI application site (openew.app) that delivers malware installers for Windows and macOS. The campaign employs cloaking to show benign content to security scanners while targeting real users with malicious payloads. This method leverages the trust in OpenAI domains to increase the likelihood of infection. Similar tactics have been observed abusing other AI platform sharing features to distribute malware and conduct ClickFix attacks.

Users who visit the malicious shared ChatGPT pages may be tricked into downloading and installing malware disguised as the ChatGPT desktop application. The malware payloads include infostealers and potentially other malicious software. The campaign's use of legitimate OpenAI URLs and cloaking techniques increases the risk of successful infection. There is no evidence of direct compromise of OpenAI services, but the abuse of the sharing feature facilitates malware distribution. The impact is primarily on end users who follow the fake outage instructions and install the malicious software.

There is no vendor patch or official fix for this abuse of ChatGPT's sharing feature, as it involves social engineering and misuse of legitimate platform functionality. Users should be warned not to trust outage messages or download prompts from shared ChatGPT links or unsolicited advertisements. Organizations should educate users to verify software downloads only from official OpenAI sources and avoid clicking on suspicious ads or links. Security teams should monitor for related phishing campaigns and block known malicious domains such as openew.app. Since this is a social engineering attack leveraging legitimate URLs, user awareness is critical.