Warning: Phishing Attacks Are Abusing the Kuse AI App

Trend Micro observed attackers abusing the Kuse AI app's storage and sharing features to host seemingly legitimate .md documents on app.kuse.ai; those documents contained links that led to a spoofed Microsoft login page to steal credentials. Attackers leveraged compromised vendor mailboxes and the less-common .md extension to evade automated filters and build trust, demonstrating a layered social-engineering approach that emphasizes the need for layered defenses and user awareness.