THE content discusses a new form of ransomware leveraging AI, particularly through the tool DeepSeek, which operates directly within browsers like Chrome. This attack can impact users of Android and Chromium desktop browsers by encrypting their files without requiring prior binary downloads; it only needs user permission to access files.
Researchers from Check Point have identified the method as employing a malicious Python Flask application disguised as a benign tool, deceiving users into allowing access to their files. While the current infection scale is not large, the potential threat is significant, especially for mobile users. The DeepSeek model allows cybercriminals to create effective attacks with minimal technical skill, thus broadening the reach of such threats. Protection measures suggested include being cautious with permissions, updating software regularly, and using native applications for sensitive tasks.