Fake AI apps drive malware attacks worldwide

Cybersecurity firm Kaspersky detected more than 92,000 attacks involving malware and potentially unwanted applications disguised as popular artificial intelligence agents and services from January to early May 2026.

Kaspersky said cybercriminals exploited trusted AI brands to trick users into downloading malicious files, with fake ChatGPT applications accounting for 49% of all detected attacks.

Fake Claude and Gemini applications each accounted for 18% of the detected attacks.

The findings were presented at Kaspersky HORIZONS, the company’s annual flagship European conference, held in Rome on May 19.

Kaspersky said the trend reflects how cybercriminals are taking advantage of the rapid adoption of AI tools by individuals and organizations.

Since the start of 2026, Kaspersky researchers have identified more than 15,000 malware samples masquerading as agentic AI software, including fake versions of fast-growing tools such as OpenClaw.

The samples included banking trojans, spyware, exploits and malware downloaders capable of deploying additional malicious payloads.

In May 2026, Kaspersky’s Global Research and Analysis Team also uncovered a new campaign linked to the Silver Fox advanced persistent threat group.

In that campaign, attackers distributed fake Claude AI applications for Windows, macOS and Linux, targeting users seeking access to AI tools.

Kaspersky said the malicious installers silently deployed malware once launched, enabling long-term access to compromised systems and sensitive information.

“The introduction of AI agents into enterprise environments changes the nature of trust itself. Every automated action becomes part of a wider chain of systems and data exchanges, which means security is no longer just about protecting endpoints – it is about controlling how intelligence, permissions, and decisions propagate across interconnected AI-driven processes,” explains Dmitry Galov, Head of Russia and CIS units at Kaspersky GReAT.

“Users should also keep in mind that attackers are actively leveraging popular AI services as a lure to steal victims’ confidential data and funds. Taking into account the evolution of modern threat landscape, reliable security solutions are becoming an essential part of digital life.”

The warning comes as AI tools are increasingly used in workplaces for writing, research, coding, automation and customer support.

Security experts have warned that fake AI applications, browser extensions and unofficial downloads can expose users to credential theft, financial fraud, data compromise and unauthorized access to company systems.

Kaspersky advised organizations to protect corporate infrastructure against a wide range of threats by using security solutions that provide real-time protection, threat visibility, investigation and advanced response capabilities.

The company said organizations that lack cybersecurity personnel may adopt managed security services such as Kaspersky Managed Detection and Response or Incident Response.

Kaspersky said these services cover the incident management cycle, from threat identification to continuous protection and remediation.

The company also urged organizations to equip cybersecurity teams with deeper visibility into threats targeting their networks.

Kaspersky said threat intelligence can provide contextual insights throughout the incident management cycle and help identify cyber risks in time.

It added that AI-powered open-source intelligence search can improve a team’s ability to detect and respond to emerging threats with greater precision.

For individual users, Kaspersky recommended using AI services only from reputable companies with strong privacy and security track records.

The company warned users to avoid anonymous or unknown bots that could be designed to harvest data.

Kaspersky said malicious or fake AI bots may attempt to extract personal information for fraud, phishing or blackmail.

Users were also advised to use security solutions that help prevent visits to phishing sites and block malware installation.

Source: Kaspersky.