Cybercriminals using fake AI tools to spread ransomware and malware

Smaller hacking groups are now exploiting the AI boom by disguising malicious software as popular AI tools.

What happened

Threat actors behind emerging ransomware and malware strains are using AI-themed lures to trick users into downloading malicious files. Security researchers from Cisco Talos have identified at least three active threats: CyberLock, Lucky_Gh0$t, and Numero that pose as legitimate AI platforms or installers. These payloads are distributed through search engine manipulation (SEO poisoning) and malicious ads, targeting individuals and organizations curious about AI tools.

Going deeper

CyberLock, a PowerShell-based ransomware, is spread via a fake site impersonating the AI platform novaleads.app. Victims are offered a free year-long subscription to a bogus AI tool, which instead delivers ransomware that encrypts files and demands a $50,000 ransom in Monero. It falsely claims the money will fund humanitarian causes.

Lucky_Gh0$t, derived from older ransomware families like Yashma and Chaos, is disguised as a premium ChatGPT installer. It packages real Microsoft open-source tools alongside the ransomware to evade detection. It targets files smaller than 1.2GB and deletes larger ones, leaving victims with a ransom note and instructions to contact the attacker via the Session messenger app.

The third strain, Numero, presents itself as an installer for InVideo AI. Unlike the others, it doesn’t encrypt or steal data. Instead, it corrupts the user interface of Windows machines by repeatedly replacing text with the numbers "1234567890" in an endless loop, rendering the system unusable.

What was said

Cisco Talos researchers warned that these tactics are part of a broader trend where threat actors exploit trending technologies to increase infection rates. Fake AI tools are being promoted in ways that give them high visibility, appearing in search results and online ads, making it more likely that users will be tricked into installing them.

Security experts advise users to avoid unofficial downloads of AI-related tools, especially those found through social media links or sponsored search results.

FAQs

What is SEO poisoning, and how does it relate to malware?

SEO poisoning is a technique where attackers manipulate search engine rankings to make malicious websites appear legitimate, increasing the chances that users will visit them and download harmful software.

How can users verify if an AI tool or installer is safe?

Always download software directly from the official website of the project or platform. Avoid clicking on promoted links or pop-up ads, and cross-check URLs for authenticity.

Why do some ransomware strains include real tools in the installer?

Bundling legitimate software with malware can help evade antivirus detection and make the installation appear more trustworthy to users.

What is the purpose of the Numero malware if it doesn’t steal data or demand a ransom?

Numero appears to be designed purely to cause disruption by locking up systems and corrupting the visual interface, possibly as a prank or to test delivery methods.

What should you do if you think you've downloaded a fake AI tool?

Disconnect from the internet, avoid opening any downloaded files, and run a full antivirus scan immediately. If infection is suspected, contact a cybersecurity professional or IT department for assistance.