"Try Claude on Your Desktop"... Warning Issued for Claude-Impersonating Phishing Sites
A case has been discovered in which phishing sites impersonating the generative AI service 'Claude' are distributing information-stealing malware.
On April 22, AhnLab announced that it had found a phishing site imitating the official Claude homepage to trick users into downloading malware.
This site used the 'Clickjacking' technique, which disguises notifications and error pop-ups to prompt users to execute malicious commands by copying and pasting them. The site displays buttons for downloading by operating system, such as Windows and Mac, alongside the phrase "Use Claude on your desktop."
When users click the download button, a pop-up window appears with installation instructions that direct them to copy a specific command. However, if users follow these instructions, malware is installed. The malware then steals files from the user's personal computer, browser-stored information, and cryptocurrency wallet data, and transmits them to the attacker's server.
The phishing site appeared at the top of Google search results when searching keywords such as "Claude App" and "Claude Desktop." AhnLab suspects that the attackers manipulated the site's ranking by using Google search advertising services to lure users attempting to install Claude on their PCs.
To prevent damage, users should follow basic security measures: ▲ Download programs only from official sources ▲ Always verify the domain address regardless of the site's position in search results ▲ Apply the latest security patches ▲ Enable real-time antivirus monitoring features such as V3.
Hot Picks Today
![[Exclusive] "What? I Used It for Fried Eggs and Kimchi Pancakes, but It Wasn't Edible?"... Raw Pork Lard Supplied to Department Stores, Causing Stir](https://cwcontent.asiae.co.kr/asiaresize/93/2026042216151436513_1776842114.png)
[Exclusive] "What? I Used It for Fried Eggs and...
- [Report] "Professionals in Their 30s and 40s With at Least 2 Billion Won in Cash...
- After Cheongung's Success, Now It's 'Haegung'... First Export Achievement Worth ...
- "375 Won Per Share" SK hynix to Pay 26.58 Billion Won Cash Dividend
- "Chairman Chey Tae-won's Warning Comes True"... Laptop Prices Already Up 1 Milli...
Donghyun Kim, manager at AhnLab, stated, "There has been a steady increase in cases where phishing sites meticulously impersonate popular and widely-used services to distribute malware. Since many users tend to trust sites that appear at the top of search results, attackers are even manipulating rankings, so extra caution is necessary."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
