Ever because the launch of ChatGPT and its integration into numerous Microsoft companies, Synthetic Intelligence (AI) has turn out to be an more and more prevalent know-how in our each day lives. This potential has prompted many companies to combine AI into their workflow, permitting for elevated productiveness and the elimination of repetitive duties. Nevertheless, in line with a report from CloudSEK, a cyber menace administration platform, cybercriminals are actually leveraging AI to lure unsuspecting customers on YouTube to click on on hyperlinks that result in malware file downloads.
In line with the report, the variety of YouTube movies inviting folks to click on on hyperlinks embedded in video descriptions has elevated by 200-300% month-on-month. These movies use display screen recordings or audio walkthroughs to explain the steps on how you can obtain and set up cracked software program like Adobe Premiere Professional and AutoCAD. Moreover, to make these movies seem extra genuine, scammers even use platforms like Synthesia and D-ID to create AI-generated avatars and goal channels with over 100k subscribers to assist the movies attain tens of millions of customers.
As soon as an unsuspecting person clicks on the hyperlink in these AI-generated YouTube movies, scammers use data stealer malware equivalent to Vidar, RedLine, and Raccoon to steal passwords, bank card data, checking account numbers, and different confidential information.
The right way to keep secure from these movies?
To keep away from falling sufferer to those movies, customers ought to look out for crimson flags equivalent to an AI-generated voice or avatar claiming that premium software program like Adobe Premiere Professional will be downloaded with out registration or torrents. Additional, such movies will usually include directions on how you can troubleshoot points with downloading information, notes on how you can disable antivirus packages, and can immediate customers to click on on hyperlinks that will use real URL shorteners like bit.ly and cutt.ly and include a passkey.
Furthermore, customers ought to by no means obtain something from unidentified sources and may at all times confirm the authenticity of a website by trying to find the area title on Google. If there may be not a lot data obtainable, it may very well be a fraudulent website. Nevertheless, when you have downloaded a file from an unverified supply, at all times run an antivirus earlier than opening it.