Cybercriminals are using fake AI image and video generators to distribute malware targeting both Windows and macOS systems, posing significant risks to users. These malicious programs, Lumma Stealer for Windows and AMOS for macOS, are designed to steal sensitive data, including cryptocurrency wallets, cookies, credentials, passwords, credit card details, and browsing history from major web browsers like Google Chrome and Microsoft Edge.
The stolen information is packaged into an archive and sent back to the attackers, who can use it for further attacks or sell it on cybercrime marketplaces. Over the past month, fake websites impersonating AI editing tools like EditPro have been promoted through search results and advertisements on platforms like X (formerly Twitter), using deepfake videos to lure unsuspecting users.
This development underscores the growing risks of cybercriminals exploiting the popularity of AI tools, emphasizing the need for vigilance and secure browsing practices when downloading software or interacting with AI-related websites.
