Push Security uncovers LLMShare malvertising campaign redirecting AI chatbot users to malware
Attackers are exploiting AI chatbot aggregation platforms through malvertising, redirecting users to malware-hosting domains.
Last verified:
Malvertising Campaign Exploits AI Chatbot Aggregation Pages
According to Push Security, a malvertising campaign tracked as LLMShare is redirecting users from AI chatbot comparison and aggregation pages to domains hosting malware payloads. The attack exploits the growing ecosystem of third-party platforms that list and compare multiple AI services, turning these pages into malware delivery vectors.
How the Attack Works
According to Push Security, the campaign appears to exploit shared hosting environments or spoofed versions of legitimate AI chatbot aggregation services. Users arriving at what appear to be chatbot comparison pages encounter malvertising redirects that funnel them toward malware-hosting infrastructure. The tactic capitalizes on the fragmentation of the AI tools market—with hundreds of LLM services now available, aggregation platforms have become a trusted waypoint for users discovery-shopping, making them attractive targets for redirect-based attacks.
Attack Surface and Scale
Push Security’s research indicates the campaign affects multiple aggregation services, though the report does not yet disclose specific platform names or the total number of affected users. The timing coincides with rapid growth in AI tool marketplaces and shared hosting platforms that bundle comparisons of ChatGPT, Claude, Gemini, and other models. These pages rank well in search results and receive legitimate traffic from users comparing AI services, making them high-value redirect targets.
Why This Matters
Security teams evaluating third-party AI chatbot marketplaces and aggregation platforms must now add domain-spoofing detection and malware scanning to their vendor approval checklists—a process Push Security’s findings suggest will add 2–4 weeks to standard procurement timelines. Organizations purchasing enterprise access to AI services through third-party resellers or comparison platforms should demand proof of malware monitoring and domain verification. For end users, the campaign underscores the risk of arriving at AI tools through aggregation pages rather than direct vendor domains: bookmarking official chatbot URLs and avoiding search-result redirects reduces exposure to malvertising redirect chains.
Frequently Asked Questions
What is the LLMShare malvertising campaign?
According to Push Security, LLMShare is a tracked malvertising operation that compromises or spoofs AI chatbot aggregation services to redirect users to malware-hosting domains.
Which platforms are affected?
Push Security reports that the campaign targets shared hosting environments hosting AI chatbot comparison and aggregation pages, though specific platform names are not disclosed in the initial report.
How should organizations respond?
Security teams should add domain-spoofing detection and malware scanning to vendor approval checklists for third-party AI chatbot marketplaces, adding an estimated 2–4 weeks to procurement timelines.
Is this a new threat vector?
Malvertising on AI tool aggregation platforms represents an emerging attack surface; as the AI chatbot market fragments into hundreds of services, aggregation pages become higher-value targets for redirect-based malware delivery.