Fake DeepSeek apps spreading malware, warns McAfee

McAfee warns that fake DeepSeek applications are spreading harmful malware. Researchers have identified a mix of dangerous software hidden within these counterfeit apps. The campaign targets individuals looking for the generative AI tool DeepSeek. Cybercriminals create websites that offer different versions of DeepSeek to lure victims. Many people find these sites through search engines, which suggests that search engine optimization (SEO) tricks are being used to attract attention. Once victims download the software, they unknowingly introduce various types of malware onto their devices. The malware includes keyloggers, password stealers, and cryptocurrency miners. Some of this software can capture sensitive information, such as banking details and cryptocurrency wallet data. It can also use the victim’s computer power to mine cryptocurrency, making the device slow and nearly useless. In some cases, victims encounter fake CAPTCHA challenges. On certain websites, they might be asked to solve a CAPTCHA by entering a command into the Windows Run program. This command simply downloads more malware onto their device. To stay safe, users should be careful online. Instead of searching for tools like DeepSeek, it’s better to visit trusted websites directly. Additionally, legitimate CAPTCHAs will never require users to paste commands into the Run program. Hackers often take advantage of popular trends to spread malware. Similar scams arose when Chat-GPT became popular. Major events like Black Friday and the Olympic Games have previously been exploited for cybercrime, showcasing the need for ongoing vigilance against online threats.