Mar 13, 2023 – Cyber threat actors have been increasingly observed using AI-generated YouTube Videos to spread a variety of stealer malware such as Raccoon, RedLine, and Vidar. Threat actors leverage data leaks and social engineering to hijack legitimate YouTube accounts and upload malicious videos, often targeting popular accounts to reach a large audience in a short span of time. Threat actors have also been observed to add fake comments to the uploaded videos to further mislead and entice users into downloading the cracked software. Anywhere between five to 10 crack download videos are uploaded to the video platform every hour, with the threat actors employing search engine optimization (SEO) poisoning techniques to make the videos appear at the top of the list.
In response to this growing threat, users should enable multi-factor authentication, refrain from clicking on unknown links, and avoid downloading or using pirated software. Additionally, organizations should ensure that their employees are aware of the risks associated with third-party app access to their company’s SaaS apps, and actively monitor the types of permissions being granted.
In summary, threat actors are increasingly using AI-generated YouTube Videos to spread stealer malware such as Raccoon, RedLine, and Vidar. To mitigate this risk, users should enable multi-factor authentication, refrain from clicking on unknown links, and avoid downloading or using pirated software. Additionally, organizations should ensure that their employees are aware of the risks associated with third-party app access, and actively monitor the types of permissions being granted.
