'Threat Actors Are Adapting Social Engineering and Monetization Strategies to Modern User Behavior': Microsoft Warns AI Chatbots May Be Sending Victims to Malicious Websites — so Be on Your Guard when Clicking

The rise of generative AI has reshaped how users search for software, nudging many away from traditional search engines toward conversational assistants. This behavioral shift creates a lucrative opportunity for cyber‑criminals, who now embed malicious URLs within AI responses. By mimicking reputable utilities such as HWMonitor, attackers exploit the implicit trust users place in AI recommendations, effectively turning a helpful tool into a delivery mechanism for malware. The technique is a modern incarnation of SEO poisoning, but instead of battling search‑engine algorithms, threat actors must now contend with the opaque ranking logic of large language models.

Technically, the compromised sites rely on DLL sideloading—a method that loads malicious libraries alongside legitimate executables—to silently install ScreenConnect, a remote‑access tool favored by attackers for its stealth and persistence. Once foothold is achieved, the adversary can profile the network, exfiltrate data, or, as observed in Microsoft’s report, deploy a cryptojacker. Cryptojacking silently consumes CPU cycles and electricity, generating revenue for the attacker while degrading system performance for the victim. The financial impact, though less visible than ransomware payouts, can be significant when multiplied across thousands of compromised endpoints.

Defenders must adapt by extending traditional SEO‑poisoning mitigations to AI‑driven interactions. This includes educating users to verify URLs, employing web‑filtering solutions that scan AI‑generated links in real time, and integrating AI‑aware threat intelligence into security orchestration platforms. Organizations should also monitor for anomalous DLL loading patterns and unexpected ScreenConnect activity as early indicators of compromise. By recognizing AI chatbots as a new vector in the threat landscape, security teams can proactively safeguard both corporate and consumer environments against this evolving form of social engineering.