Fake Kling AI Ads on Facebook Spread RAT Malware

Cybercriminals are exploiting Facebook’s advertising platform to lure users into downloading remote access trojan (RAT) malware via counterfeit Kling AI pages, targeting over 22 million potential victims. The campaign uses fake Facebook pages and sponsored ads that mimic the branding of Kling AI, a synthetic media tool launched in June 2024 by Kuaishou Technology.

Unsuspecting users who interact with the fraudulent ads are redirected to spoofed websites designed to resemble the official Kling AI platform. These malicious sites prompt users to download software that secretly installs RAT malware, granting attackers unauthorized access to victims’ devices.

Kling AI allows users to generate images and videos from text and image prompts, a feature that has attracted significant attention since its debut. The misuse of its branding highlights growing concerns over the weaponization of generative AI platforms in online scams. Facebook’s role in hosting these deceptive ads raises questions about content moderation and ad verification procedures.