Vietnam Hackers Bait AI Tool Fans With Stealth Malware

A threat group based in Vietnam is deploying deceptive online campaigns that exploit the growing interest in artificial intelligence video-generation tools, according to cybersecurity firm Mandiant. The group has launched thousands of ads, fake websites and social media posts that falsely promise access to popular prompt-to-video AI services. Instead of delivering the advertised tools, the campaigns install malicious software, including infostealers and remote access backdoors, on victims’ devices.

The operation leverages the public’s increasing curiosity about generative AI to spread malware under the guise of innovative content creation platforms. Victims are lured through convincing digital channels that mimic legitimate AI video services, only to be infected with tools designed to extract sensitive information or enable unauthorized access.

Mandiant’s findings highlight a growing cybersecurity concern as threat actors adapt their tactics to capitalize on emerging technologies. The scale and sophistication of the campaign suggest a well-organized effort with a focus on targeted digital deception.