AI Malware Is Here: New Report Shows How Fake AI Tools Are Spreading Ransomware

https://blog.talosintelligence.com/fake-ai-tool-installers/

39•karlperera•8mo ago

Comments

tough•8mo ago

Fake AI tools aren't AI Malware

I wont even click the link and give them a visit

tokai•8mo ago

Its just bonzi buddy and browser toolbars once again it seems.

tough•8mo ago

Malware is just a niche of adware anyways, all the ads are mostly vectors for malware to get into your computer.

Use adblcok, Use firefox, be free

e2le•8mo ago

How will websites survive if they can't serve malvertisements to users?

Avicebron•8mo ago

ideally by the natural selection of providing something valuable (to people who visit the site)

Terr_•8mo ago

I suspect the advertising space would be very different if they were strongly liable for scams/viruses being distributed through their networks.

But somehow everything these days "needs" to be monopoly-scale which means moderation/vetting must fall by the wayside.

Noumenon72•8mo ago

"AI Malware Is Here" implies the AI is writing malware. You wouldn't say "IRS Malware Is Here" if people were distributing fake tax-filing tools with malware, which is all that's shown here.

karlperera•8mo ago

AI generated threats to cyber security are real. AI tools are being used to generate code faster and little or no tech knowledge is needed to carry out an attack. This was not possible before. Automated attacks are being driven with the help of AI too. APTs and deepfakes and many other forms of threats are now common. See: https://www.cshub.com/threat-defense/articles/cyber-security...

antonkar•8mo ago

Sadly it is almost inevitable we'll have another Bredolab-size botnet (30 mln computers, 1% of all) by cybercriminals but this time it'll be an AI botnet.

As soon as AI components will be useful, they'll be in botnets. And with such a size, you have more compute than OpenAI and can train a frontier misaligned model or modify an open source one:

The solution is to not just have 10% of compute in clouds like we have now but at least 50% in SOTA clouds, to have more compute than botnets. Have AI model App Store, probably NVIDIA will become like Apple:

Will have at least the most minimal checks on what runs on their hardware

We'll have to do it but better to do it early not late

It can be a unicorn startup that NVIDIA will want to buy (motivating gamers to put GPUs in clouds is easy, same with others really, you can share $30-1500/month with them by renting GPUs from your cloud to corporations and others)

There is Salad but they don't secure the hardware and software, so can't really have corporate clients. Amazon AWS, Azure, others, show that it's a real business. Unicorn-sized just in the USA (even bigger if global) if you'll do the math

christianqchung•8mo ago

>And with such a size, you have more compute than OpenAI and can train a frontier misaligned model or modify an open source one

That doesn't seem like a reasonable conclusion based on Open AI and leading lab expenditures. They need training data too, would one group actually be able to amass all of this? If you hijack 30 million random computers that's not as nearly as useful as 300K B200 GPUS for model training. Am I missing something?

antonkar•8mo ago

It's a lot, but you're right that the more realistic scenario is just running an existing open source model - sadly those are trivial to misalign

So we better have SOTA clouds: people don't update computers for months and as Bredolab shows - their GPUs are up for grabs

Ideally and int. org. will do it but they are slow and countries don't cooperate enough, so a startup is more realistic

AIorNot•8mo ago

I think what worries me is that AI allows the fraud barrier to entry to be lowered - malware is malware but ai built website with a landing page looks like some startup - now with veo3 you can even generate talking head video testimonials in an instant to go with a fake but auth looking gwebsite

TZubiri•8mo ago

"Chatgpt is just the tip of the iceberg, here's 47 tools that.. "

https://x.com/JuvidX/status/1664756189689774080

One of the disadvantages of openness, everyone can fork or wrap the api, and mitm themselves at either no or minimal added value.

neilv•8mo ago

> malicious actors are exploiting its popularity by distributing a range of malware disguised as AI solutions’ installers and tools.

This sounds like the ordinary problem of ordinary malware in programs downloaded and installed off the Internet.

"AI malware is here" makes me think malware in the behavior of the "AI", or malware developed by AI.

UnAutomating the Economy: More Labor but at What Cost?

Show HN: Gettorr – Stream magnet links in the browser via WebRTC (no install)

Statin drugs safer than previously thought

Handy when you just want to distract yourself for a moment

More States Are Taking Aim at a Controversial Early Reading Method

AI will not save developer productivity

How I do and don't use agents

BTDUex Safe? The Back End Withdrawal Anomalies

Show HN: Compile-Time Vibe Coding

Show HN: Ensemble – macOS App to Manage Claude Code Skills, MCPs, and Claude.md

PR to support XMPP channels in OpenClaw

Twenty: A Modern Alternative to Salesforce

Raspberry Pi: More memory-driven price rises

Level Up Your Gaming

Di.day is a movement to encourage people to ditch Big Tech

Show HN: AI generated personal affirmations playing when your phone is locked

Show HN: GTM MCP Server- Let AI Manage Your Google Tag Manager Containers

Launch of X (Twitter) API Pay-per-Use Pricing

Facebook seemingly randomly bans tons of users

Global Bird Count Event

What Is Ruliology?

Jon Stewart – One of My Favorite People – What Now? with Trevor Noah Podcast [video]

P2P crypto exchange development company

Vocal Guide – belt sing without killing yourself

Write for Your Readers Even If They Are Agents

Knowledge-Creating LLMs

Maple Mono: Smooth your coding flow

Sid Meier's System for Real-Time Music Composition and Synthesis

Show HN: Slop News – HN front page now, but it's all slop

Show HN: Empusa – Visual debugger to catch and resume AI agent retry loops