Google ads for shared ChatGPT, Grok guides push macOS infostealer malware

A new AMOS infostealer campaign is exploiting Google search ads to trick users with fake Grok and ChatGPT conversation guides. The malicious ads appear in search results and lead users to websites that seem to offer helpful AI chatbot instructions. However, these sites ultimately deliver the AMOS information-stealing malware specifically targeting macOS systems. The campaign leverages users' interest in popular AI tools to distribute malware through seemingly legitimate educational content.