People are being tricked into downloading fake AI tools as a way to spread information steeler malware nude lofil.
Security researchers say the malware can harvest browser credentials, cryptocurrency wallet information and more sensitive data.
“Instead of relying on traditional phishing and cracked software sites, we often build persuasive AI-themed platforms,” Morphisec researcher Shmuel Uzan said in the report.
Attackers build a compelling AI theme platform that can be promoted through Facebook groups and social media campaigns. These may seem legal, but they are just a frontline for getting people to download malware hidden in what appears to be AI tools.
These types of posts shared on Facebook reached high views up to 62,000 with just a single post.
Some of the fake social media pages identified are Luma dreammachine ai, Luma dreammachining, and Gratistuslibros.
When users click on a post, they will see an obvious free AI editing tool and are prompted to upload images and videos. You will then be asked to download what appears to be an AI tool, but it is actually a malicious ZIP archive called VideoDreamai.Zip. This paves the way Python binaries unfold the noodles.
Some instances also see data steelers bundled with remote access trojans like Xworm to give you more control over the host’s machines and data.
The noodles are rated as Vietnamese origins, according to a github profile that claims to be the profile of a “passionate malware developer in Vietnam.”
Authorities say cybercrime is particularly prevalent in Southeast Asia, with a history of using the Facebook platform to distribute steeler software.
Edited by Stacy Elliott.
Discover more from Earlybirds Invest
Subscribe to get the latest posts sent to your email.
