# AI Brands Turn Into Lures: New Phishing Wave Exploits ChatGPT, Claude, Copilot and DeepSeek *Sunday, June 14, 2026 at 6:07 PM UTC — Hamer Intelligence Services Desk* **Published**: 2026-06-14T18:07:34.742Z (23h ago) **Category**: cyber | **Region**: Global **Importance**: 8/10 **Sources**: OSINT **Permalink**: https://hamerintel.com/data/articles/7426.md **Source**: https://hamerintel.com/summaries --- **Deck**: Attackers are spoofing ChatGPT, Claude, Microsoft Copilot and DeepSeek to hijack credentials through email spam, malicious ads and poisoned search results, Microsoft says. The wave, which has flooded up to 100,000 inboxes a day in some countries, shows how quickly trust in AI tools is being weaponized against ordinary users and corporate networks. Artificial intelligence tools have become so trusted, so fast, that they are now prime bait for cybercriminals. Microsoft’s threat intelligence arm is warning that attackers are impersonating major AI brands—including ChatGPT, Claude, Microsoft Copilot and DeepSeek—in a sweeping phishing campaign that blends email spam, malicious advertising and tainted search‑engine results to harvest user credentials at scale. In findings released this week, Microsoft describes a set of coordinated waves in which attackers send AI‑themed phishing emails, buy ads that masquerade as download links for popular chatbots, and manipulate search results so fraudulent sites appear near the top of AI‑related queries. One ChatGPT‑themed email wave alone was hitting around 100,000 inboxes per day across Switzerland, Austria and South Africa, according to the company’s telemetry, underscoring how quickly such lures can reach ordinary users and mid‑sized organizations. The campaigns lean on the speed with which generative AI tools have seeped into office routines. Fake notices framed as policy violations for services such as Claude or Copilot push recipients to “verify” accounts or update security settings via booby‑trapped links. Other messages promise upgraded or “enterprise” access to ChatGPT or DeepSeek, again steering users to credential‑harvesting sites. Because many staff now expect legitimate emails about AI access from their IT departments, these messages can slip past skeptical instincts that might block older, more generic phishing attempts. For individual users, the consequences of a single mistaken click can be immediate: stolen email passwords, compromised cloud storage and, in some cases, access to financial or personal data that sits behind single sign‑on portals. For companies, the risk is systemic. Attackers who obtain corporate login details can move laterally across networks, scrape proprietary documents, or plant further malware—all starting from a phishing hook disguised as a productivity upgrade. Strategically, the emerging pattern points to a new phase in cyber risk. Where attackers once exploited brands like banks or shipping firms, they are now targeting the infrastructure of digital cognition itself: the AI tools people increasingly use to draft contracts, summarize reports or write code. That gives criminals not just a new lure, but a way to piggyback on the rapid rollout of AI inside enterprises, where governance is still catching up and employees may be confused about what genuine communications from AI vendors look like. The use of malvertising and SEO poisoning amplifies the threat. By purchasing ad slots or rigging search rankings around terms like “download ChatGPT desktop” or “Claude business login,” attackers can catch users even before a company’s email filters have a chance to react. A user who types a query into a search engine and clicks the top result is unlikely to suspect that the AI logo on the landing page hides a credential‑stealing script. The broader lesson is unsettling but clear: when trust in powerful tools grows faster than security literacy, brand recognition stops being a shield and becomes the bait on the hook. Key signals to monitor include whether similar AI‑themed campaigns begin targeting additional regions or languages, whether other major AI providers report parallel phishing waves using their branding, and how quickly enterprise security teams update training, filters and browser protections to flag AI‑related lures. The speed and scope of those adjustments will determine whether this remains a damaging but manageable wave—or the start of a long, lucrative era for attackers who understand that the quickest way into a company is through the tools its people are most eager to use.