This fake Midjourney Facebook page tried to push malware on over a million people

News
By published

A Facebook page with 1.2 million people was promoting infostealers

The Midjourney AI website landing page, which features a rolling animated stream of numbers and words.
(Image credit: Midjourney)

Cybercriminals are operating Facebook pages with millions of subscribers, through which they’re promoting various Generative AI tools.

However a report from Bitdefender claims these tools are actually fakes, and are pushing infostealers and other malware that generate huge databases of sensitive data, which are later sold on the dark web for profit.

The company's researchers uncovered a Facebook page with more than a million subscribers, pushing the Rilide infostealer to the page's visitors. According to Bitdefender, hackers first found a vulnerable page and took it over, then renamed it to Midjourney (a generative AI tool for image creation) and aggressively promoted it on the platform through paid advertising. They amassed roughly 1.2 million subscribers by the time they were discovered, and their page was shut down.

Targeting Europeans

In parallel with the Facebook page, the fraudsters also created a website that imitates Midjourney, and which offered the tool for download. It’s important to note that generative AI tools, such as Midjourney, DALL-E, or ChatGPT, don’t have a standalone, downloadable version. They are all simply available online, so any downloadable app that claims to be a genAI tool is most likely malware.

Still, the website, and the downloadable content, was promoted on the Facebook page. Users who fell for the trick and download the program, end up getting the Rilide v4 infostealer, which impersonates a Google Translate extension for the web browser.

The majority of the victims were men, aged 25-55, located in Europe. The bulk of the victims reside in either Germany, Poland, Italy, France, Belgium, Spain, the Netherlands, Romania, or Sweden.

While in this example the attackers impersonated Midjourney, it’s hardly the only generative AI tool whose image is being abused to distribute malware. ChatGPT, SORA, DALL-E, and others, are all equally being used. 

Facebook pulled the malicious page down, but others are still out there with new ones popping up every day, the researchers warned. Users are advised to read up on the tools thoroughly, as that will help them avoid such scams.

More from TechRadar Pro

  1. The evolution of cybersecurity in the age of generative AI
  2. Here's a list of the best firewalls around today
  3. These are the best endpoint security tools right now
TOPICS
Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Representational image of a cybercriminal
Criminals are spreading malware disguised as DeepSeek AI
AI tools.
Not even fairy tales are safe - researchers weaponise bedtime stories to jailbreak AI chatbots and create malware
Fraud
Hackers are tricking victims into scam-yourself attacks with fake tutorials, CAPTCHAs, and updates
DeepSeek
Fake DeepSeek installers are infecting your device with dangerous malware
Hands typing on a keyboard surrounded by security icons
The psychology of scams: how cybercriminals are exploiting the human brain
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
AI agents can be hijacked to write and send phishing attacks
Latest in Security
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Lock on Laptop Screen
Medusa ransomware is able to disable anti-malware tools, so be on your guard
An abstract image of digital security.
Fake file converters are stealing info, pushing ransomware, FBI warns
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Coinbase targeted after recent Github attacks
hacker.jpeg
Key trusted Microsoft platform exploited to enable malware, experts warn
IBM office logo
IBM to provide platform for flagship cyber skills programme for girls
Latest in News
Zendesk Relate 2025
Zendesk Relate 2025 - everything you need to know as the event unfolds
Disney Plus logo with popcorn
You can finally tell Disney+ to stop bugging you about that terrible Marvel show you regret starting
Google Gemini AI
Gemini can now see your screen and judge your tabs
Girl wearing Meta Quest 3 headset interacting with a jungle playset
Latest Meta Quest 3 software beta teases a major design overhaul and VR screen sharing – and I need these updates now
Philips Hue
Philips Hue might be working on a video doorbell, and according to a new report, we just got our first look at it
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
More about security
An abstract image of digital security.

Fake file converters are stealing info, pushing ransomware, FBI warns
Microsoft

"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Digital clouds against a blue background.

Navigating the growing complexities of the cloud
See more latest
Most Popular
AMD Ryzen 9950X
I analyzed 25 AMD Zen 4 and Zen 5 CPUs and the Ryzen 9 9900X is the best of them all right now: Here’s why
Ugreen \00d7 Genshin Impact Kinich Collectible Gift Box and exclusive Genshin Impact merchandise.
Ugreen reveals exclusive Genshin Impact collection and they're some of the most eye-catching charging products I've ever used
Zendesk Relate 2025
Zendesk Relate 2025 - everything you need to know as the event unfolds
Google Gemini AI
Gemini can now see your screen and judge your tabs
iFi iDSD Valkyrie in gold, on a beige desk
iFi's iDSD Valkyrie DAC wants to guide your music to the great hall of Valhalla
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
A fresh Samsung Galaxy S25 Edge leak hints at a 2K display and a titanium frame
Philips Hue
Philips Hue might be working on a video doorbell, and according to a new report, we just got our first look at it
SDUNITED AX835-025FF mini PC
This mini PC with the incredible Strix Halo APU is yet another sign AMD may have given up on big brands for bleeding edge tech
Disney Plus logo with popcorn
You can finally tell Disney+ to stop bugging you about that terrible Marvel show you regret starting
Girl wearing Meta Quest 3 headset interacting with a jungle playset
Latest Meta Quest 3 software beta teases a major design overhaul and VR screen sharing – and I need these updates now