Malware disguised as AI services surges, raising risks for Vietnamese businesses

07/07/2026 11:31

The explosive adoption of artificial intelligence (AI) tools such as ChatGPT, DeepSeek, and Claude has created a new opportunity for cybercriminals who are increasingly disguising malware as popular AI software to lure small- and medium-sized enterprises (SMEs) in Southeast Asia, including Vietnam, into downloading malicious programs.

According to the latest report released by cybersecurity firm Kaspersky, its global security solutions blocked more than 33,300 cyberattacks disguised as widely used AI applications during the first four months of 2026.

The figure represented nearly a fivefold increase compared with the same period last year.

Southeast Asia experienced one of the sharpest increases, with more than 1,800 attacks detected during the same period, almost seven times higher than in the first four months of 2025.

As businesses increasingly integrate AI tools into everyday workflows, attackers are exploiting the trend by creating convincing fake installers and software packages that appear to be legitimate AI applications.

ChatGPT came first, accounting for 44 percent of all AI-themed impersonation attacks, followed by DeepSeek with 33 percent.

Claude represented 11 percent of detected cases.

Researchers also identified hundreds of attacks masquerading as OpenClaw, an AI tool that has gained significant popularity throughout 2026.

Hackers trojanized software packages.

Once installed, the seemingly harmless application silently downloads additional malware capable of stealing, encrypting, deleting, or modifying critical corporate data.

The abuse of trusted software brands extends beyond AI.

During the first four months of the year, Kaspersky reported blocking nearly 415,000 attacks involving counterfeit versions of commonly used workplace applications, including Telegram, WhatsApp, Zoom, and Microsoft Teams.

Adrian Hia, managing director for Asia-Pacific at Kaspersky, said cybercriminals have long viewed SMEs as attractive targets.

“With more than 90 percent of businesses in Southeast Asia falling into this category, the region has become a priority target,” he said.

In Vietnam, SMEs account for nearly 98 percent of all companies, local media reported.

He urged enterprises to strengthen their cyber defenses.

Many SMEs face limited IT budgets and lack dedicated cybersecurity personnel, making them particularly vulnerable to increasingly sophisticated social engineering and malware campaigns.

Kaspersky experts recommend that SMEs adopt several fundamental security measures to reduce the risk of AI-related malware infections.

Firms should avoid pirated software, carefully verify website addresses before downloading applications, and refrain from clicking suspicious links received through email, according to Kaspersky.

They are also encouraged to implement clear access controls, maintain regular data backups, and deploy cybersecurity solutions appropriate to their operational needs and financial resources.

“As adversaries constantly refine their methods to exploit human error, the need for up-to-date security awareness training for businesses of all kinds and sizes is undeniable,” said Rodion Pyanov, product manager at Kaspersky Small Office Security.

Tieu Bac - Duc Thien / Tuoi Tre News

Link nội dung: https://news.tuoitre.vn/malware-disguised-as-ai-services-surges-raising-risks-for-vietnamese-businesses-103260707100511561.htm