Fake Facebook pages and ads are being used to promote malicious websites that distribute malware disguised as Kling AI, a popular generative AI platform. This scam ultimately leads to the installation of remote access Trojans and data-stealing malware, targeting usersβ personal information and cryptocurrency wallets. #KlingAI #VietnameseThreatActors
Keypoints
- Cybercriminals use counterfeit Facebook pages and ads to direct users to malicious websites mimicking Kling AI.
- The fake sites trick users into downloading a ZIP file containing malware disguised as legitimate AI tools.
- The malware establishes remote access via a Trojan and steals sensitive data, including browser credentials and wallet information.
- Threat actors, possibly based in Vietnam, employ sophisticated techniques to evade detection and maintain persistence on infected systems.
- This campaign illustrates the increasing use of social media platforms for targeted malware delivery and data theft involving generative AI tools.
Read More: https://thehackernews.com/2025/05/fake-kling-ai-facebook-ads-deliver-rat.html