A naukri.com initiative
Kaspersky
3w
17
Image Credit: Kaspersky
Attackers distributing Trojans disguised as DeepSeek or Grok clients for Windows | Kaspersky official blog
- In early 2025, the Chinese chatbot DeepSeek gained global attention and faced controversy, with cybercriminals also taking an interest in it.
- Malicious groups are creating fake DeepSeek websites to distribute malware disguised as legitimate client software.
- The malware distribution involves manipulating scripts to activate the SSH service in Windows, allowing remote access to victims' computers.
- Fake DeepSeek websites use geofencing to redirect users to the malicious content based on their IP address region.
- Social media platforms, particularly X (formerly Twitter), are used to distribute links to these malicious sites.
- One post promoting a fake DeepSeek site received 1.2 million views, potentially through suspicious bot activity.
- Users should be cautious when interacting with AI programs like DeepSeek and follow safety guidelines to protect against cyber threats.
- Recommendations include checking website URLs, filtering sensitive data, protecting devices, and limiting third-party plugins.
- The article emphasizes the importance of using AI securely and provides resources for further reading on AI safety.
Read Full Article
1 Like
For uninterrupted reading, download the app