# 攻击者滥用 ChatGPT 和 Claude 的共享对话功能传播恶意软件

- 来源：The Decoder：AI News（RSS）
- 作者：Matthias Bastian
- 发布时间：2026-05-30 18:32
- AIHOT 分数：49
- AIHOT 链接：https://aihot.virxact.com/items/cmps856sj07nbslljiw0kpzci
- 原文链接：https://the-decoder.com/attackers-abuse-shared-chatgpt-and-claude-chats-to-spread-malware

## AI 摘要

攻击者正利用 ChatGPT 和 Claude 的聊天共享功能传播恶意软件。攻击者在共享对话中植入伪装成错误消息或安装指南的内容，由于对话内容托管在受信任的官方域名上，因此能够绕过安全工具的检测。

## 正文

Attackers abuse shared ChatGPT and Claude chats to spread malware

Attackers are exploiting shared chat links in ChatGPT and Claude to push malware. Both platforms let users share conversations publicly via URL. Victims stumble onto these chats through paid search ads. Because the links sit on trusted domains, security tools don't flag them, and users are more likely to trust what they see.

Indicator Type hxxps://claude[.]ai/share/8e6401b5-4849-46c4-a3cb-29e1c3c49131 URL hxxps://chatgpt[.]com/s/cb_6a0f1e6bbec88191aa7fede27163f08d URL openew[.]app domain de8c50e8ccd240ef9d10ec26c26eeb37a4d1cad7c1e0edf3bb6e5689ec2dde78 SHA256

Security firm Push Security says attackers craft shared chats that mimic official outage notices or install guides. One newer twist uses ChatGPT's code-rendering feature to build a full fake error page right inside a shared chat, then pushes users to download an infected desktop app. On Claude, shared chats pose as Apple support walkthroughs laced with malicious Terminal commands.

Push Security calls the attack technique "LLMShare." BleepingComputer and Kaspersky have both documented similar campaigns.

AI News Without the Hype – Curated by Humans
