DMR News

Advancing Digital Conversations

AI-Generated TikTok Videos Used to Spread Malware

ByYasmeeta Oon

May 31, 2025

AI-Generated TikTok Videos Used to Spread Malware

Cybercriminals are exploiting TikTok’s viral video format by creating fake tutorials that lure users into downloading malware designed to steal sensitive information from their PCs. According to cybersecurity firm Trend Micro, these videos promise free access to popular software like Windows, Microsoft Office, Spotify, and CapCut.

These scam videos guide viewers through executing PowerShell scripts, often with voiceover instructions or on-screen text. Although the scripts look legitimate, they are designed to trick users into running commands that download and execute malicious code remotely, compromising their systems. Notably, the malicious code isn’t hosted on TikTok itself, making it difficult for security solutions to detect or block the threat on the platform.

Once executed, the scripts modify Windows Defender settings by adding certain directories to the exclusion list, allowing the malware to evade detection. Then, a secondary payload is downloaded, often Vidar or StealC malware, which can steal login credentials, credit card details, two-factor authentication codes, and other sensitive data. TikTok’s recommendation algorithm helps these deceptive videos reach a wide audience quickly, with some clips gaining hundreds of thousands of views.

AI Content Amplifies the Threat

The use of AI-generated content enables attackers to rapidly produce and customize videos targeting different user groups more effectively. This raises the stakes in online security, as AI lowers barriers for creating convincing scams at scale.

Trend Micro urges users to be cautious when encountering unsolicited technical instructions on social media. It’s important to verify the source’s legitimacy before running any PowerShell commands or downloading files from unknown links. Reporting suspicious posts and avoiding interactions with untrusted content are essential precautions to avoid falling victim to these scams.

What The Author Thinks

AI-powered scams on platforms like TikTok show how technology, while beneficial, can also be weaponized by malicious actors. The sophistication and scale of these threats require both users and platforms to be more vigilant. Continuous education, cautious digital habits, and improved detection methods are vital to protecting users as these AI-driven attacks evolve.


Featured image credit: Anton via Pexel

For more stories like it, click the +Follow button at the top of this page to follow us.

Yasmeeta Oon

Just a girl trying to break into the world of journalism, constantly on the hunt for the next big story to share.

Leave a Reply

Your email address will not be published. Required fields are marked *