AI chatbots are reportedly helping cybercriminals spread malware through fake software websites. Here’s what Microsoft discovered, why it matters, and how you can protect yourself before downloading anything online.
Table of Contents
What Happened?
In the past, attackers used “SEO poisoning” (manipulating search results to push fake websites higher in Google). Now, Microsoft says some threat actors are trying to influence AI tools into recommending malicious websites instead.
The report says attackers created fake websites pretending to offer trusted PC utilities like HWMonitor and CrystalDiskInfo.
When users asked AI chatbots where to download these tools, the AI sometimes recommended the fake websites instead of the real ones.
People who trusted those links reportedly downloaded malware (harmful software that steals information or gives attackers control over a device).
Microsoft said the attackers then used DLL sideloading (a trick that hides malware inside legitimate software files) to install ScreenConnect, a remote access tool. This allowed attackers to control infected computers remotely.
In some cases, attackers also installed cryptojacking malware, which secretly uses a victim’s computer to mine cryptocurrency.
Who Was Affected and What Risks Exist?
Microsoft did not say how many people were affected.
However, the company warned that anyone relying on AI-generated recommendations for software downloads could potentially face similar risks.
The malware described in the report may allow attackers to:
- access personal files
- monitor device activity
- scan home or business networks
- install additional harmful software
- slow down computers through cryptojacking
Cryptojacking (secret cryptocurrency mining) can make devices extremely slow, overheat computers, and increase electricity usage.
Data leaks and malware infections can also create problems long after the original attack disappears from headlines. Cybercriminals often use stolen information in phishing emails, fake support calls, identity theft attempts, or account takeover attacks.
Many people also do not realize their information was stolen until suspicious activity appears later.
If you are not sure whether your information was leaked somewhere online, checking regularly can help you spot problems earlier.
With Futureproof, you can quickly check whether your email appeared in known data leaks and get simple steps to secure your account.
At Futureproof, Kevin explains digital safety in simple words, with clear tips and zero fluff. He holds a degree in information technology and studies fraud trends to keep his tips up-to-date.
In his free time, Kevin plays with his cat, enjoys board-game nights, and hunts for New York’s best cinnamon rolls.
