If you enjoy watching tech tips on TikTok, you’ll want to be extra careful. Cybersecurity experts from Trend Micro have warned about a new scam that uses AI-generated videos to spread harmful malware. Hackers are targeting TikTok users with short videos showing how to unlock software like Windows, Microsoft Office, Spotify, or CapCut. But instead of helping you, these tricks can steal your personal information.
These videos are designed to look helpful, offering simple steps to enable “premium features” or “activate” software for free. They often show a person opening the Run tool on Windows and typing in a PowerShell command. While the video claims this will unlock extra features, what happens is far more dangerous.
Following the instructions, you could download malware that steals your private data. The malicious code installs two types of malware called Vidar and StealC, which can take screenshots, steal passwords, grab credit card numbers, copy cookies, collect crypto wallet info, and even access your two-factor authentication codes.
AI tools make the scam look convincing
What makes this scam especially tricky is how realistic the videos appear. According to Trend Micro, the clips are likely created using AI tools that generate visuals and voiceover instructions. The videos are nearly identical, with only minor changes like camera angles and download links, suggesting they were made in bulk using automation.
The voice in the videos doesn’t sound like a real person—it’s also AI-generated. The combination of realistic visuals and a confident-sounding voice makes people more likely to trust the content.
One video has already gained over 500,000 views, 20,000 likes and hundreds of comments. This shows how effectively the TikTok algorithm can boost these kinds of videos, even when they’re spreading harmful content.
A new twist on an old scam
While this kind of attack isn’t new, the method has evolved. In the past, hackers would put dangerous links in the video description or comment section, which security systems could often detect. But now, by hiding the malware download inside a PowerShell command shown in the video, they’ve found a way to avoid most security tools.
Trend Micro explained that this tactic is especially effective because it tricks people into running commands themselves rather than simply clicking on a suspicious link. Since TikTok videos can go viral so quickly, the attackers can reach a massive audience before the videos are taken down.
To stay safe, you should never follow instructions from unknown TikTok videos that ask you to run commands or download files. Always use official websites and trusted sources when you need help with software or apps. And remember: if something sounds too good to be true — like getting free premium features — it probably is.
