Scammers are exploiting X’s Grok AI to push malicious links, boost visibility, and game SEO
A new wave of scam posts on X is hijacking Grok’s replies to make dangerous links look trustworthy and impossible to miss. According to security researcher Tal, bad actors are packaging their payloads inside posts that pose as “video card” tips or deals, then attaching adult-content bait to slip through review and lure clicks.
Here’s how the scheme works, based on Tal’s findings:
– Attackers publish posts disguised as graphics card content and add provocative bait to draw attention.
– When users invoke Grok, the AI’s reply effectively “echoes” the post, amplifying it to large audiences and lending it an air of credibility.
– That added exposure can inflate domain reputation and search engine authority, making the spam links rank better and appear more legitimate over time.
– The links route through shady ad networks and so‑called “direct links” that commonly push fake captcha scams, info‑stealer malware, and other gray‑area content.
– The tactic makes the links fully visible and highly clickable within the thread.
Tal also claims there’s no effective malicious link scanning catching these posts on X right now, allowing them to persist with minimal friction. In an ironic twist, when a user asked Grok for the correct place to report the abuse, the AI allegedly responded with a broken link.
Why this scam is so effective:
– Social proof: A reply from an official AI assistant can look like validation to casual scrollers.
– SEO manipulation: High‑impression threads can boost the linked domain’s reputation, helping the scam spread beyond the platform via search.
– Click psychology: Tech deals plus adult‑content bait create a potent lure that drives impulsive clicks.
What users should do to stay safe:
– Don’t click links in posts that combine unrelated topics (hardware deals mixed with adult bait is a red flag).
– Treat any “captcha” or download prompt from a redirected link as suspicious, especially if it pops up unexpectedly.
– Use the platform’s in‑app reporting tools to flag suspicious posts and accounts.
– Keep your browser, operating system, and security software updated, and enable real‑time protection.
– If you accidentally click, close the tab immediately; don’t install anything or grant notification permissions.
Bottom line: Scammers are leveraging Grok’s visibility to supercharge low‑effort link bait, funneling users to fake captchas, info‑stealers, and risky ad networks. Stay cautious around trending “video card” posts, especially those paired with adult content bait, and think twice before clicking any link that feels the least bit off.
