Summary
Russian hackers are sneaking into your devices and stealing your personal stuff using fake AI sites.
According to a recent report, Russian hackers are using fake AI sites as a trap to steal crypto wallet details. Cybersecurity firm suspects this to be the work of FIN7, the famous hacking group. The AI sites unknowingly download malware into your device.
Malware like RedLine and Lumma Stealer is designed to collect login credentials and other sensitive information including one’s crypto wallet details. By luring users into their fake AI site they install this malware into their PC, giving direct access to their personal information.
Zach Edwards, a senior analyst at Silent Push, explains that the majority of people targeted in this scam are tech-savvy individuals interested in AI tools. The hackers have cleverly disguised these sites to look legit by making effective use of Search Engine Optimization (SEO) and professional website design. Most of these websites promise deepfake nude images, which is directly connected to a Dropbox link which obviously doesn’t work and leaves the user with only malware on their devices. Some examples of such sites include “aiNude.ai”, “easynude.website” and “nude-ai. pro”.
FIN7 has a long history of hacking and and financial fraud, they are connected to several ransomware gangs, including DarkSide and BlackMatter. Although many of these sites have been taken down, experts warn anyone who interacted with them to consider whether their data is safe.
