Kaspersky Uncovers Infostealers Masquerading as AI Development Tools

In March 2026, Kaspersky’s Threat Research team identified a malicious campaign targeting developers searching for "Claude Code," an AI agent developed by Anthropic. Attackers used deceptive sponsored ads appearing at the top of search engine results to redirect users to malicious downloads. The campaign involved infostealers masquerading as legitimate AI development tools, including Claude Code and OpenClaw. No specific technical details, infection vectors, or impacted systems were disclosed beyond the use of fraudulent advertisements. The primary target group consisted of developers seeking AI-related software.