Summary: Threat actors are impersonating the new DeepSeek AI chatbot to create fraudulent websites aimed at stealing personal information and distributing malware. These fake sites trick users into downloading the Vidar information stealer, which exfiltrates sensitive data like passwords and cryptocurrency details. Researchers advise organizations to enhance security measures and educate users on recognizing such threats.
Affected: DeepSeek AI Chatbot users
Keypoints :
- Fraudulent websites mimicking DeepSeek are being created to harvest personal information.
- Users are led to download the Vidar information stealer through a deceptive registration and CAPTCHA process.
- The malware targets cryptocurrency-related files and employs social media to hide its command-and-control infrastructure.
- Organizations are urged to bolster security and inform users about potential online threats.
Views: 8