Cybercriminals are exploiting the rising popularity of Chinese AI reasoning model, DeepSeek, through phishing campaigns, malware deployments, and lookalike websites. They are luring users into downloading malware disguised as the AI model, and creating fraudulent investment opportunities or bogus pre-IPO shares for extracting financial information. Security vulnerabilities and data collection practices of DeepSeek have also triggered scrutiny from authorities. Experts suggest user vigilance, secure browsing and two-factor authentication for protection against such threats.
Go Module Mirror served backdoor to devs for 3+ years
Google’s mirror proxy for Go programming language developers promoted a backdoored package for over three years. The service, Go Module Mirror, fastens and verifies downloads’
