TLDR
Threat actors are exploiting the AI hype wave by impersonating popular platforms like ChatGPT, Claude, DeepSeek, and Microsoft Copilot in phishing emails, malvertising, and fake GitHub installers. A recent campaign sent 100,000+ ChatGPT...
Como funciona
Threat actors are exploiting the AI hype wave by impersonating popular platforms like ChatGPT, Claude, DeepSeek, and Microsoft Copilot in phishing emails, malvertising, and fake GitHub installers. A recent campaign sent 100,000+ ChatGPT...
Señales de alerta
- : Urgent emails demanding payment or account updates within days, branded with AI logos "Free AI tools" or plugins advertised via search engines and social ads GitHub repos or download links offering AI installers from unverified publishers
Qué hacer
- 1: Verify subscription/billing notices directly in the official AI platform, never via email links Avoid downloading AI plugins, models, or tools from ads and unofficial repositories Enable MFA on all AI service accounts and monitor statements for unauthorized charges
Fuente
microsoft-security
Fuente verificada por Mythos Forensic Team
https://www.microsoft.com/en-us/security/blog/2026/06/08/ai-brands-as-bait-how-threat-actors-are-using-the-ai-hype-in-social-engineering/FAQ
Es AI Brand Phishing: How ChatGPT, Claude, and DeepSeek Lures Steal Credentials and Cards una estafa real?
Si. Trata el mensaje, la llamada o la solicitud de pago como sospechosos hasta que los verifiques por un canal oficial.
Cuales son las primeras senales?
: Urgent emails demanding payment or account updates within days, branded with AI logos "Free AI tools" or plugins advertised via search engines and social ads GitHub repos or download links offering AI installers from unverified publishers
Que debo hacer primero?
: Verify subscription/billing notices directly in the official AI platform, never via email links Avoid downloading AI plugins, models, or tools from ads and unofficial repositories Enable MFA on all AI service accounts and monitor statements for unauthorized charges
Puede LegalAudit revisar mi caso?
Si. Abre el chat gratis y pega el mensaje, el enlace, el remitente o los datos de pago para un triage.