Cybercriminals are capitalizing on the explosive growth of generative AI tools, deploying sophisticated campaigns that impersonate popular software like CapCut, Adobe Express, and Canva to distribute malware and hijack devices.
ESET warns that content creators are increasingly targeted through social media ads, phishing sites, and compromised platforms. Attackers leverage AI-generated deepfakes and fake “premium” tool offers to steal data or gain remote access to victims’ systems.
The demand for AI-powered editing tools has created a goldmine for threat actors. Recent campaigns mimic legitimate services, such as CapCut Pro or Adobe Express, to trick users into downloading malware-laden executables disguised as video editors or design software.
.png
)
For instance, a fraudulent site impersonating CapCut prompts users to upload files or enter prompts, only to deliver a remote access trojan (RAT) like AnyDesk or ConnectWise ScreenConnect instead of the promised AI tool.
ESET told Cyber Security News that once installed, attackers gain full control over devices, enabling data theft, ransomware deployment, or credential harvesting.
A recent campaign involved fake social media ads promoting “CapCutProAI,” which redirected users to sites hosting malware designed to steal sensitive information, including login credentials, cryptocurrency wallets, and browser histories, often sold on dark web forums.
Similarly, hijacked social media pages impersonating popular AI tools amassed large followings before being shut down, distributing malware through malicious download links.
Weaponizing Generative AI and Deepfakes
Threat actors are enhancing their schemes with AI-generated content to bypass detection. Deepfake videos of public figures have been used in ads to lend credibility to fake services. Attackers also exploit AI voice-cloning tools to create convincing phishing messages, manipulating live calls to divert payments to fraudulent accounts.
Generative AI models further streamline attacks by automating phishing email creation and malware coding.
These tools enable even low-skilled hackers to launch business email compromise (BEC) attacks with grammatically flawless lures. For example, AI-powered phishing emails can be highly personalized and evade traditional spam filters.
YouTube has emerged as a key vector for these threats. Attackers compromise channels to promote fake software tutorials or crypto scams, often using deepfake videos to mimic official content.
In one scheme, creators received collaboration offers via email, only to be directed to malware disguised as editing tools. Researchers observed millions of users targeted through YouTube-linked threats in the past year alone.
Fake browser extensions also pose risks. A malicious extension posing as Google Translate, promoted through social media ads for AI tools, delivered credential-stealing malware.
Meanwhile, fake Canva phishing sites use the platform’s branding to host credential-stealing login pages, exploiting its reputation as a trusted design tool.
Protecting Against AI-Powered Threats
To mitigate risks, experts recommend:
- Download software only from official sources—avoid third-party sites or social media ads.
- Scrutinize URLs for misspellings or unusual domains (e.g., “CapCutProAI” instead of “CapCut Pro”).
- Enable multi-factor authentication to reduce account takeover risks.
- Use advanced security tools capable of detecting AI-generated deepfakes and malicious executables.
- Educate teams on recognizing social engineering tactics, such as unsolicited collaboration requests or urgency-driven demands.
As AI tools become more accessible, their misuse will likely escalate. Security firms have reported a surge in social engineering threats, driven by AI-enhanced tactics.
For content creators, vigilance and skepticism are critical defenses against these evolving threats. As one security researcher notes, “Cybercriminals exploit trust and innovation your awareness is the strongest shield.”
Malware Trends Report Based on 15000 SOC Teams Incidents, Q1 2025 out!-> Get Your Free Copy
