Threat Intelligence Report

Leveraging Malvertising and LLM Shared Chats to Steal Your Passwords and Crypto | Breakpoint Security Blog

📅 December 13, 2025 📰 blog.breakpointsecurity.pt 🔍 0 CVE(s) referenced

Threat actors are exploiting sponsored Google ads to redirect users to malicious LLM shared chats, which deliver highly obfuscated macOS malware designed to steal passwords, cryptocurrency wallets, and sensitive data while establishing persistent, root-level backdoors.

vendor

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle