<ul data-eligibleForWebStory="true"><li>Kaspersky identifies a fake DeepSeek app used as a lure in a malware distribution campaign.</li><li>The spoofed DeepSeek-R1 website offered legitimate tools bundled with a malware called BrowserVenom.</li><li>BrowserVenom configures web browsers to direct data through attacker-controlled servers, potentially exposing sensitive information.</li><li>The site promoting the malware was advertised via Google Ads and targeted Windows users primarily.</li><li>Windows users accessing the site had to pass a CAPTCHA to download the malware.</li><li>BrowserVenom bypasses Windows Defender's protections with a special algorithm.</li><li>Most victims were found in countries like Brazil, Cuba, Mexico, India, Nepal, South Africa, and Egypt.</li><li>Kaspersky warned of cybercriminals distributing malicious software disguised as popular AI tools.</li><li>The security researcher emphasized the need for precautions when downloading open-source AI tools from unverified sources.</li></ul>

Watch out - that DeepSeek installer could be damaging malware

Discover more