macOS Flags ChatGPT App as Malware Due to Certificate Revocation

macOS Flags ChatGPT App as Malware Due to Certificate Revocation

First seen 29 May 2026, 05:40 UTC OsxdailyLetsdatascience 72% similarity 55.5

Article Content

Browse articles
ThreatCluster

Mac users reported that the ChatGPT desktop app was flagged as malware by macOS's Xprotect system, which moved the app to the Trash. This issue arose after OpenAI revoked security certificates for older app versions due to a third-party security incident involving the developer tool Axios. Users were advised to reinstall or update the app from official sources to restore notarization. Malwarebytes also reported a related threat from a fake download site distributing malware disguised as ChatGPT installers. The fake site, openew[.]app, delivers Windows credential stealers and a macOS strain named Odyssey Stealer. OpenAI confirmed the certificate change and advised users to update their apps to avoid issues. The situation highlights both false-positive malware flags and real malware risks for users.

Key Points: • macOS flagged the ChatGPT app as malware due to revoked security certificates. • Users are advised to reinstall the app from official sources to restore functionality. • A fake download site is distributing malware disguised as ChatGPT installers.

ThreatCluster AI

Timeline

2026-05-08
OpenAI warns users to update ChatGPT app
OpenAI advised users to update their macOS apps by May 8, 2026, to retain notarization after a security issue was identified.
Letsdatascience
2026-05-29
macOS flags ChatGPT app as malware
Users reported that macOS's Xprotect flagged the ChatGPT app as malware and moved it to the Trash, causing confusion among users.
Osxdaily
Recent
Malwarebytes reports fake download site
Malwarebytes identified a site, openew[.]app, distributing fake ChatGPT installers and delivering malware to users.
Letsdatascience

Community

Browse all →