[As reported by BleepingComputer and first discovered on X by cybersecurity researcher gonjxa, these fake apps are spreading through both search results and ads on social media platforms that display political fakes. Malicious links direct users to highly professional websites posing as EditProAi, a fake AI image and video editing software.

Although at first glance it feels legitimate and even looks that way, the download link for this fake AI app actually contains malware, namely a Windows version of Lumma Stealer on PCs and a macOS version of AMOS on Apple computers

The malware itself attacks Chromium-based browsers, stealing credentials, passwords, credit cards, cookies, browsing history, and cryptocurrency. Affected browsers include Google Chrome, Microsoft Edge, Mozilla Firefox, Opera, and Samsung Internet. [The data is then archived and sent back to the attacker, where it can be sold on the dark web or used for further attacks. The PC malware used in this campaign uses a code signing certificate stolen from freeware utility developer Softwareok.com to bypass Microsoft's built-in defenses. If you download and install this program, you should assume that your authentication, stored passwords, and crypto wallets are all compromised. All sites accessed after installing this program should have their passwords reset with strong, unique passwords. Similarly, any online banking or e-mail services used on a computer with this program installed should be secured using 2FA or multi-factor authentication.

It has been said before, but needs to be repeated. Anything that seems too good to be true, whether it is a new game or an AI image generator, almost certainly is. That's why we want to stick to known sites and services, and in this case, AI tools such as those on the Best AI Image Generators list.

Also, strong protection against Mac and PC viruses is obviously necessary. This will stop malware from being detected and infecting your machine and prevent hackers from stealing your personal and financial data.

At the same time, you want to stick to known sites and services with good reputation and background, if in doubt, use Google or other reputable search engines for background information and reviews. For the love of Dolly Parton, do not click on links from social media or share personal information over the Internet. Doing so could not only get you in trouble, but could even make you a victim of identity theft.