Cybercriminals are using fake AI tools on social media to spread Noodlophile malware. These malicious platforms trick users into downloading ZIP archives that steal sensitive data. The Noodlophile stealer, suspected to have originated in Vietnam, is capable of harvesting browser credentials and cryptocurrency wallet information. In some cases, it can include additional remote access trojans.

Researchers have found that instead of using traditional phishing methods, attackers are creating convincing AI-themed platforms, often advertised through legitimate-looking Facebook groups and viral social media campaigns. These platforms appear to offer free AI editing tools, enticing users to upload images or videos. Users are then prompted to download what seems to be an AI tool but is actually a malicious ZIP archive, such as VideoDreamAI.zip. This archive leads to a Python binary that deploys the Noodlophile Stealer.

Some instances have seen the data stealer bundled with remote access trojans like XWorm, allowing for greater control over the host's machine and data. One post promoting these fake tools reached as many as 62,000 views. Examples of fake social media pages include Luma Dreammachine AI, Luma Dreammaching, and gratistuslibros.

Authorities have indicated that cybercrime is particularly prevalent in Southeast Asia, and there is a history of distributing stealer software using the Facebook platform. A GitHub profile claiming to be that of "a passionate Malware Developer from Vietnam" has been linked to the Noodlophile malware.

In other tech news, InventWood is preparing to mass-produce wood that is stronger than steel. Developed in 2018 by Liangbing Hu, a materials scientist at the University of Maryland, the process transforms ordinary wood into a material with exceptional strength.