Published: · Region: Global · Category: cyber

AI Chatbots Hijacked to Spread Cryptomining Malware

On 27 May, cybersecurity researchers reported that attackers have poisoned AI software recommendations to redirect users to malicious sites hosting cryptojacking tools. By around 07:49 UTC, more than 150 domains were identified distributing ScreenConnect-based backdoors and GPU mining malware via spoofed downloads of popular utilities.

Key Takeaways

By the morning of 27 May 2026, around 07:49 UTC, cybersecurity analysts had detailed a new attack pattern in which malicious actors are leveraging AI-based software recommendation flows to distribute cryptojacking and remote‑access malware. Instead of compromising the software itself, attackers poison recommendation or search pathways utilized by AI chatbots and similar tools, causing users seeking legitimate utilities to be redirected to cloned or spoofed download sites.

The campaign specifically targets users looking for popular system monitoring and diagnostic tools like CrystalDiskInfo and HWMonitor. When users follow links suggested by compromised or manipulated AI recommendations, they are taken to sites that visually mimic official distribution pages but host installers laced with malicious payloads. These payloads include ScreenConnect components used as backdoors, rogue dynamic-link libraries (DLLs), and GPU-focused mining software designed to hijack computing resources for unauthorized cryptocurrency mining.

Key actors include the threat actors maintaining the malicious domain infrastructure—over 150 domains have been identified to date—and the AI-driven platforms whose recommendation logic is being exploited. End-users and organizations that rely on AI chatbots for software discovery are the primary victims, with the risk particularly high for less technically sophisticated users who may not cross-check URLs or digital signatures.

This development matters because it represents an evolution in how attackers abuse trust chains on the internet. Historically, users have been trained to avoid suspicious emails or search results; however, many now place high confidence in AI assistants that synthesize information and recommend tools. By corrupting or gaming the underlying data and optimization processes that drive those recommendations, attackers effectively move one step upstream in the software supply chain.

Technically, cryptojacking is often viewed as a “low and slow” threat primarily consuming electricity and degrading performance rather than stealing data. Yet in this case, the presence of ScreenConnect-based components and backdoor capabilities suggests potential for broader compromise, including lateral movement within networks, deployment of additional malware, and exfiltration of sensitive information. GPU-focused miners can also interfere with legitimate AI and graphics workloads, particularly in organizations using GPUs for business or research.

From a broader cyber ecosystem perspective, the incident underscores the emergent risk where AI systems become amplifiers of malicious content inadvertently. Attackers can optimize malicious domains to be highly ranked or contextually relevant to AI models, or more directly poison training and retrieval data. This effectively weaponizes recommendation pipelines that users perceive as authoritative and neutral.

Outlook & Way Forward

In the short term, security teams should update URL and domain blocklists to include known malicious infrastructure used in this campaign and monitor for anomalous GPU utilization that might indicate cryptomining activity. Organizations should reinforce guidance that software downloads—especially for system utilities—should originate from verified vendor sites or curated repositories, not solely via AI-suggested links.

Over the medium term, AI platform providers will face growing pressure to harden their recommendation and link-generation mechanisms. This could include stricter domain reputation checks, verification of official vendor URLs, integration with threat intelligence feeds, and stronger user interface cues that distinguish unverified third-party sites. Models may need to be retrained or fine‑tuned with a focus on minimizing the suggestion of ambiguous or low‑reputation domains.

Strategically, this trend points to a broader class of “AI supply-chain attacks” where adversaries no longer need to compromise the software directly but can instead influence the informational pathways by which users discover and install it. Analysts should watch for copycat operations targeting other popular categories—such as remote desktop tools, compression utilities, or media players—and for regulatory interest in imposing due‑diligence requirements on AI service providers whose outputs directly influence software acquisition behavior.

Sources

Related Coverage

GLOBAL

EU Moves to Cut Import Duties on U.S. Goods

European Union governments on 27 May cleared legislation to implement import duty reductions for U.S. goods under a new EU–U.S. trade understanding. The move, reported around 08:02 UTC, signals a bid to stabilize transatlantic economic ties amid wider geopolitical frictions.
GLOBAL

Reports of Major U.S. Plan to Cut Forces Committed to NATO

On 27 May 2026, German media reported that the Trump administration plans to significantly reduce U.S. forces and platforms assigned to NATO command in Europe. Proposed changes reportedly include cutting one‑third of U.S. fighters under NATO control and withdrawing bombers, carriers, submarines and ISR drones.
GLOBAL

China Imposes Export Limits on Urea Fertilizer Shipments

On 27 May 2026, China moved to restrict exports of urea fertilizer, a key nitrogen source for global agriculture. The decision comes amid concerns over domestic supply and could tighten international fertilizer markets ahead of key planting seasons.
WARNING

Ukraine Drones Hit Area Near Zaporizhzhia Nuclear Plant, 50+ Blasts

Around 08:27 UTC on 27 May, Russian-linked sources reported a 'massive and unprecedented' Ukrainian drone attack on Enerhodar, the satellite city of the Russian‑occupied Zaporizhzhia Nuclear Power Plant, with over 50 explosions heard. While there is no indication of direct damage to the reactors or critical nuclear infrastructure, any escalation of military activity around Europe’s largest nuclear plant raises acute safety, escalation, and market‑relevant risk.
WARNING

Iranian Anti-Ship Missile Suspected in Strike on South Korean Vessel

At approximately 08:10 UTC, Yonhap reported that an Iranian anti-ship missile was likely involved in an attack on a South Korean ship. If confirmed, this would mark a direct Iranian role in a serious maritime incident, raising escalation and shipping-risk concerns across key trade routes.
WARNING

EU–US Trade Deal Advances as Ukraine Deep-Strikes Russian Bases, Tuapse Port

From 07:04–08:04 UTC, EU governments cleared legislation to cut import duties on US goods under a new EU–US trade deal, while Ukraine launched a new wave of deep strikes on Russian military and energy-linked infrastructure, including Taganrog, Voronezh/Baltimor and Tuapse port, alongside heavy drone attacks on Energodar near the Zaporizhzhia nuclear plant. In parallel, Nvidia pledged $150B in annual investment in Taiwan and ByteDance weighed up to $70B in 2026 AI capex, locking in a massive AI and semiconductor build‑out in East Asia.