GitHub: Threat Actors Abuse ChatGPT, Claude, and DeepSeek Brands as Phishing Lures to Steal Credentials

AI-Powered Phishing Campaigns Exploit ChatGPT, Claude, and DeepSeek Brands

Cybercriminals are leveraging the popularity of AI platforms like ChatGPT, Claude, and DeepSeek to launch sophisticated phishing attacks, tricking users into surrendering login credentials, credit card details, and authentication tokens. These campaigns, documented by Microsoft Threat Intelligence in early 2026, rely on social engineering rather than breaches of the AI services themselves.

How the Attacks Unfold

Attackers craft convincing fake emails and websites mimicking trusted AI platforms, often routing victims through legitimate services such as URL shorteners, CRM tools, and GitHub to evade detection. By the time users realize they’ve been compromised, their data may already be stolen.

Key Campaigns Identified

1. ChatGPT-Themed Phishing (May 5, 2026)

   • Target: ~4,500 users in South Africa
   • Lure: Fake "ChatGPT Plus subscription downgrade" emails with a payment update prompt
   • Attack Chain: Victims were redirected through Amazon tracking domains and CRM services before landing on a fake payment page collecting credit card details.

2. Claude-Themed Phishing (April 20–22, 2026)

   • Target: Over 2,000 organizations in the U.S., U.K., and India
   • Lure: Emails claiming account policy violations, directing users to a malicious PDF ("Fill and Sign Claude Appeal Form.pdf")
   • Attack Chain: Victims were funneled through fake verification screens to a token-stealing Microsoft sign-in page.

3. DeepSeek Malvertising & Fake Installers (April 2026)

   • Lure: A fraudulent GitHub repository ("DeepSeek-V4") appeared within 45 minutes of DeepSeek’s V4 model announcement, distributing Vidar infostealer.
   • Malvertising: A fake "Awesome AI Windows Plugin" was pushed via free movie streaming sites, delivering a code-signed malware downloader linked to the Fox Tempest group.

Impact & Consequences

Thousands of organizations across multiple countries have been targeted, with victims losing:

• Credit card data
• Account credentials
• Authentication tokens, granting attackers direct access to corporate systems

Indicators of Compromise (IoCs)

Microsoft provided hashes, domains, and URLs tied to these campaigns, including:

• Malicious PDF: 791efb555eefb7215e96659a1353a97416743b66bdd72705493129c64057d40e
• Fraudulent GitHub Repos: hxxps://github[.]com/shippingtechnologymovie/AI-techVideos
• Vidar C2 Domains: pan.ssffaa19[.]xyz, pan.rongtv[.]xyz

These attacks highlight the growing threat of AI-branded phishing, where trust in popular platforms is weaponized to bypass security measures.

Source: https://cybersecuritynews.com/threat-actors-abuse-chatgpt-claude-and-deepseek-brands-as-phishing-lures/

GitHub cybersecurity rating report: https://www.rankiteo.com/company/github

"id": "GIT1781001050",
"linkid": "github",
"type": "Cyber Attack",
"date": "5/2026",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'customers_affected': 'Thousands of organizations',
                        'location': ['South Africa', 'U.S.', 'U.K.', 'India'],
                        'type': 'Organizations'},
                       {'customers_affected': '~4,500 users',
                        'location': ['South Africa'],
                        'type': 'Individual Users'}],
 'attack_vector': ['Email',
                   'Malvertising',
                   'Fake Websites',
                   'Malicious PDFs',
                   'Fraudulent GitHub Repositories'],
 'data_breach': {'data_exfiltration': 'Yes',
                 'file_types_exposed': ['PDF'],
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Login credentials',
                                              'Credit card details',
                                              'Authentication tokens']},
 'date_detected': '2026-04',
 'date_publicly_disclosed': '2026-05-05',
 'description': 'Cybercriminals are leveraging the popularity of AI platforms '
                'like ChatGPT, Claude, and DeepSeek to launch sophisticated '
                'phishing attacks, tricking users into surrendering login '
                'credentials, credit card details, and authentication tokens. '
                'These campaigns rely on social engineering rather than '
                'breaches of the AI services themselves.',
 'impact': {'brand_reputation_impact': 'High',
            'data_compromised': ['Login credentials',
                                 'Credit card details',
                                 'Authentication tokens'],
            'identity_theft_risk': 'High',
            'payment_information_risk': 'High'},
 'initial_access_broker': {'entry_point': ['Email',
                                           'Malvertising',
                                           'Fake GitHub Repositories']},
 'lessons_learned': 'These attacks highlight the growing threat of AI-branded '
                    'phishing, where trust in popular platforms is weaponized '
                    'to bypass security measures.',
 'motivation': 'Financial Gain, Credential Theft, Data Exfiltration',
 'post_incident_analysis': {'root_causes': 'Social engineering, exploitation '
                                           'of trust in AI platforms, use of '
                                           'legitimate services (URL '
                                           'shorteners, CRM tools, GitHub) to '
                                           'evade detection'},
 'references': [{'date_accessed': '2026-05-05',
                 'source': 'Microsoft Threat Intelligence'}],
 'response': {'third_party_assistance': 'Microsoft Threat Intelligence'},
 'threat_actor': ['Fox Tempest'],
 'title': 'AI-Powered Phishing Campaigns Exploit ChatGPT, Claude, and DeepSeek '
          'Brands',
 'type': 'Phishing',
 'vulnerability_exploited': 'Social Engineering'}