Malvertising Campaign Uses Google Ads and Claude.ai to Target Mac Users
A malvertising campaign is using deceptive Google Ads and Claude.ai shared chats to trick Mac users into downloading and installing malware.
Attackers are conducting an active malvertising campaign that leverages Google Ads and legitimate Claude.ai shared chats to distribute malware to Mac users. The campaign targets individuals searching for "Claude mac download," presenting them with sponsored search results that appear to lead to the official claude.ai website, but instead direct users to instructions for installing malicious software [BleepingComputer].
The campaign specifically targets Mac users, using the lure of a desktop application for the Claude AI service to trick victims into executing malicious payloads. By abusing the trust associated with legitimate AI platforms and search engine advertisements, the attackers successfully deceive users into compromising their own systems.
Security researchers advise users to exercise extreme caution when clicking on sponsored search results and to verify the authenticity of software download sources. Users should ensure they only download applications from official, verified developer websites and remain vigilant against unexpected prompts or installation instructions.