Sophisticated cybercriminals try to infect your machine by using artificial intelligence and malicious video and photo generators.
Since artificial intelligence and the creation of videos and photos over text have become fashionable, cybercriminals have wasted no time trying to use them to infect you with malware.
The reason for fake AI image and video generators that ask you to download their app but hides Lumma Stealer and AMOS malware that steals information related to credentials and cryptocurrency wallets.
Lumma Stealer is Windows malware and AMOS is for macOS, but both steal cryptocurrency wallets and cookies, credentials, passwords, credit cards and browsing history from Google Chrome, Microsoft Edge, Mozilla Firefox and other programs Chromium browser.
The strange thing is that these sites are advertised on X but also promoted in search results which means that someone is paying for it and some company just takes the money and doesn't sweat it.
A prime example is the editproai[.]pro and editproai[.]org sites discovered by cyber security researcher g0njxa, which have a professional look and make visitors think and feel that they are legitimate.
See how they advertise on X
https://x.com/ewilkins0711/status/1857467473240699138
However, clicking the “Download Now” links will download an executable pretending to be the EditProAI application. For Windows users, the file is named “Edit-ProAI-Setup-newest_release.exe” [VirusTotal] and for macOS, it is called “EditProAi_v.4.36.dmg” [VirusTotal].
If you have downloaded this program in the past, you should consider all your saved passwords, cryptocurrency wallets and authentications compromised and you should change them immediately with unique passwords on every website you visit.
You should also enable multi-factor authentication on all sensitive websites, such as cryptocurrency exchanges, online banking, email services, and financial services.