Social Media Malvertising Campaign Promotes Fake AI Editor Website for Credential Theft
Essential information
- Published
- 01/08/2024 10:46
- Modified
- 01/08/2024 11:02
- Tags
- 2024-08-01 credential-theft lumma phishing
- Related entities
- 73 observables, 13 techniques (mitre), 1 malware
Description
An examination of how threat actors hijack social media pages, rename them to resemble legitimate AI photo editors, and post malicious links to fake websites promoted through paid ads. The links trick users into installing endpoint management software, allowing the execution of credential stealers like Lumma Stealer to exfiltrate sensitive data.