Topic: The dangers of AI to us as they can be use for crypto stealing malwares - page 2. (Read 214 times)
April 12, 2024, 06:47:27 AM
Not every Ai out there is friendly, as most of them are spyware and are created solely for destructive purposes. It even goes beyond Ai, to simple apps, sometimes we can find some unknown apps in our devices. Apps that we didn't install ourselves. These spywares can also even include random things like non default keyboards, as you can type lots of passwords over these keyboards, and can give access to whoever is on the other side, spying. Staying away from downloading files from unprotected sites. Sites that supported mod apps, are usually unsafe.
April 12, 2024, 06:32:28 AM
I'm sure majority of us are into AI, at least for me I have been trying to learn a lot of tools, like Mid Journey, Capcut, In-video, Leonardo AI, Elevenlabs, Runway and others. So when I say this reports, I was taken aback as how cyber criminals is also leveraging AI tools now to steal our crypto credentiasl as most of them are info stealer.
---
I know others will say that we should go and look for the official page and check everything before downloading. But with the recent AI resurgence, including myself joining the picture and taking advantage of it for whatever purpose it may served to me, still there are dangers lurking in the dark specially for us crypto enthusiast and those trying to learn AI.
---
I know others will say that we should go and look for the official page and check everything before downloading. But with the recent AI resurgence, including myself joining the picture and taking advantage of it for whatever purpose it may served to me, still there are dangers lurking in the dark specially for us crypto enthusiast and those trying to learn AI.
Personally, I'm not fascinated by nor have I ever used any AI tool and I'm glad to be completely out of it. I understand that people have the need to use such tools in order to be more efficient and save time, but most technology has its negative sides and all those who support all these AI innovations must face the fact that sooner or later a lot of negative things will surface, which this technology produced.
Scammers just use what is available to them, but I don't see how someone can scam me with the help of AI if they couldn't do it in a "stupid way", so to speak.
April 12, 2024, 06:03:12 AM
I'm sure majority of us are into AI, at least for me I have been trying to learn a lot of tools, like Mid Journey, Capcut, In-video, Leonardo AI, Elevenlabs, Runway and others. So when I say this reports, I was taken aback as how cyber criminals is also leveraging AI tools now to steal our crypto credentiasl as most of them are info stealer.
The way it works is that this threat actor will take over a Facebook account, hack it specially those who have a lot of followers and then turn it into face site similar to the original AI tools.
The malware included here and most of them have been reported already in this community,
Rilide Stealer by @The Cryptovator
Vidar by @Lafu
Nova Stealer
And one of the well-known AI tools right now, Mid-Journey, had 1.2 million followers and reach of over 500,000 individuals in Europe before being taken down on March 8, this year.
https://www.bitdefender.com/blog/labs/ai-meets-next-gen-info-stealers-in-social-media-malvertising-campaigns/
I know others will say that we should go and look for the official page and check everything before downloading. But with the recent AI resurgence, including myself joining the picture and taking advantage of it for whatever purpose it may served to me, still there are dangers lurking in the dark specially for us crypto enthusiast and those trying to learn AI.
The way it works is that this threat actor will take over a Facebook account, hack it specially those who have a lot of followers and then turn it into face site similar to the original AI tools.
- Cybercrooks have taken over Facebook profiles to run sponsored malvertising campaigns impersonating Midjourney, Sora AI, DALL-E 3, Evoto, ChatGPT 5 and many others
- The malicious pages on Facebook are meticulously designed to trick users into downloading purportedly official desktop versions of popular AI software. The cybercriminals behind these campaigns regularly change and adapt the malicious payloads in an attempt to avoid further detection from security software
- The links direct users to malicious webpages that download a variety of intrusive stealers to harvest sensitive information from compromised systems, including credentials, autocomplete data, credit card information, and even crypto wallet information.
- The analyzed campaigns employ malicious ads that contain links to executable files that serve Rilide, Vidar, IceRAT, Nova Stealers. The entire batch of malicious software is often offered as malware-as-a-service by threat actors on specialized forums and channels.
- The malvertising campaigns have tremendous reach through Meta’s sponsored ad system and have actively been targeting European users from Germany, Poland, Italy, France, Belgium, Spain, the Netherlands, Romania, Sweden, and elsewhere.
- The ads use convincing descriptions alongside generated AI videos and photos to lure potential users into accessing malicious payloads
- One particular Facebook page impersonating Midjourney with a whopping 1.2 million followers was active for nearly a year until it was shut down on March 8, 2024. Since then threat actors have continuously set up more fraudulent pages to deliver malicious ads to users.
- The Midjourney malvertising ad campaign was directed towards male Facebook users aged 25 to 55 and had an ad reach of approximately 500,000 individuals from Europe (demographics and reach of the campaign were obtained by tracking Meta’s Ad Library catalog)
The malware included here and most of them have been reported already in this community,
Rilide Stealer by @The Cryptovator
Vidar by @Lafu
Nova Stealer
And one of the well-known AI tools right now, Mid-Journey, had 1.2 million followers and reach of over 500,000 individuals in Europe before being taken down on March 8, this year.
https://www.bitdefender.com/blog/labs/ai-meets-next-gen-info-stealers-in-social-media-malvertising-campaigns/
I know others will say that we should go and look for the official page and check everything before downloading. But with the recent AI resurgence, including myself joining the picture and taking advantage of it for whatever purpose it may served to me, still there are dangers lurking in the dark specially for us crypto enthusiast and those trying to learn AI.
Jump to: