Attackers are exploiting shared chat links in ChatGPT and Claude to push malware, according to Push Security. Both platforms allow users to share conversations publicly via URL, making it easier for malicious actors to distribute harmful content. Victims stumble onto these chats through paid search ads, as the links appear on trusted domains. Security tools often fail to flag these links, and users are more likely to trust what they see. Push Security reported that attackers craft shared chats that mimic official outage notices or install guides. One newer twist uses ChatGPT's code-rendering feature to build a full fake error page right inside a shared chat, then pushes users to download an infected desktop app. On Claude, shared chats pose as Apple support walkthroughs laced with malicious Terminal commands. A shared Claude chat shows a fake download guide for Claude Code that delivers malware. Push Security calls the attack technique 'LLMShare.' BleepingComputer and Kaspersky have both documented similar campaigns. *Source: [thedecoder](https://the-decoder.com/attackers-abuse-shared-chatgpt-and-claude-chats-to-spread-malware/)*