A recent campaign shows how attackers are leveraging fake AI tool websites to distribute malware and backdoors to unsuspecting users. By impersonating legitimate AI platforms and productivity tools, threat actors lure victims into downloading trojanized applications that enable persistent access, credential theft, and remote control capabilities. These campaigns exploit growing interest in generative AI services while bypassing user suspicion through convincing branding and phishing techniques. As mobile devices are increasingly used to access AI tools and cloud services, the findings highlight how AI-themed social engineering is becoming an emerging mobile threat vector requiring stronger app verification and behavior-based monitoring.
Read the full report here.