Scammers Exploit AI-Generated Image Tools to Distribute Malware

Severity: High (Score: 60.0)

Sources: Bitdefender

Summary

As AI-generated images gain popularity among small business owners, scammers are increasingly using fake AI image generators and malicious downloads to steal sensitive information. Cybercriminals impersonate well-known AI brands to trick users into downloading malware disguised as legitimate software. Researchers at Bitdefender Labs have identified malvertising campaigns that promote these fake tools through social media ads, which often appear convincing and professional. Victims mistakenly believe they are accessing legitimate AI applications, only to install info-stealing malware instead. The scams target businesses using AI images for advertising, e-commerce, and branding. It is crucial for business owners to verify the legitimacy of AI tools before use, as the rules around AI-generated content are still evolving. The growing trend of AI tools has created significant opportunities for cybercriminals to exploit unsuspecting users. Key Points: • Scammers are using fake AI image generators to distribute malware. • Victims believe they are downloading legitimate AI tools, leading to info theft. • Business owners must verify AI tool legitimacy to avoid scams.

Key Entities

• Malware (attack_type)
• Phishing (attack_type)
• United States (country)
• T1566.002 - Spearphishing Link (mitre_attack)
• CapCut (platform)
• ChatGPT (platform)
• Dropbox (tool)
• Gemini (tool)
• Google Drive (tool)
• Midjourney (tool)