Infostealer Targets Users Via Fake AI Video Sites

Noodlophile Steals Credentials and Wallets Under AI Video Guise Rashmi Ramesh (rashmiramesh_) • May 12, 2025

Hackers are targeting users into downloading infostealers by tricking them into clicking on links that claim to produce artificial intelligence-generated videos.

See Also: 2025 AI Adoption & Risk Report

The campaign uses bogus generation platforms to distribute the Noodlophile stealer, previously undocumented malware that siphons browser credentials, session cookies, cryptocurrency wallets and sensitive documents, found researchers from Morphisec

The campaign's exploitation of AI as a social engineering lure makes it unique, researchers said. "Unlike older malware campaigns disguised as pirated software or game cheats, this operation targets a newer, more trusting audience: creators and small businesses exploring AI for productivity," they said.

The attackers build websites with names such as "Dream Machine" and "Video Dream AI," promoting them on high-visibility Facebook groups, some exceeding 60,000 views. The visitors are prompted to ...