This report highlights a sophisticated cybercriminal campaign leveraging the hype around AI tools to compromise developer workstations. The attackers exploit trust in routine software installation processes, using SEO poisoning to direct victims to convincing fake pages. The malware’s fileless execution and evasion of Windows defenses demonstrate a high level of technical sophistication, while the targeting of collaboration tools and cloud storage underscores the focus on enterprise environments...