Site search

⚠️ QUICK DESCRIPTION
Threat actors are abusing Google Ads and fake Claude “Artifact” project pages to trick users into downloading malicious installers disguised as AI tools.
These downloads deploy stealers, RATs, and backdoors — all while appearing to be legitimate AI productivity software.

💀 THE THREAT
• Fake Claude “Artifact” project pages delivering malware
• Malicious Google Ads redirecting users to trojanized installers
• Attackers impersonate AI tools to gain trust
• Payloads include stealers, RATs, and backdoors
• Malware hidden inside fake setup files
• Campaign targets users searching for AI tools or templates
👁️ WHY IT’S DANGEROUS
•...

1/6 🐀 DiscordRAT 2.0 – When Discord Becomes a Command Center
DiscordRAT 2.0 is a Remote Access Trojan (RAT) that uses as its command-and-control channel.

Instead of connecting to suspicious servers, it communicates through Discord, making detection harder.

2/6 ⚙️ How It Operates

Once installed on a victim’s system, DiscordRAT connects to a hidden Discord bot.

Attackers can then remotely control the infected computer through Discord commands — silently and instantly.

It blends with normal Discord traffic.

3/6 🔥 What Attackers Can Do

• Monitor victim activity
• Access files and folders
• Capture screenshots
• Log keystrokes
•...

“Hacking doesn’t break the locks now... He dressed up as a security guard. "

Even if the file looks secure... Windows doesn't warn you.. You can get the virus.

Hackers are now sending out fake meeting invitations to Zoom and Microsoft Teams with malicious files attached.

What’s the trick ? This file is documented with a stolen or hijacked digital signature.

*Windows will look at it as reliable
*No warning may come up
*Some protection programs can be allowed to pass

Simply: A hacker wears a true security certificate.

You are getting:
"Urgent meeting of the Board of Directors." ”...