AI Chatbots Redirect Users to Cryptojacking Sites — Microsoft Warns

Colleagues, I’d like to highlight a cybersecurity issue: Microsoft has uncovered a campaign in which AI chatbots are directing users to cryptojacking sites.
Key points:
- Users are steered to fake utility download pages (e.g., CrystalDiskInfo, HWMonitor).
- The ZIP houses a legitimate exe and a malicious DLL that side-loads ScreenConnect and deploys cryptominers.
- Actors achieve persistence, add Defender exclusions, and gain remote access — risking data theft.
Why it matters: SEO poisoning has migrated to LLM-based tools, raising the risk of long-term compromise.
Recommendations: Block suspicious domains, verify download sources, and strengthen third‑party vendor controls.
How are you responding to these threats?
#cybersecurity #AI #cryptojacking #informationsecurity


Latest comments
No comments yet.