Cyber criminals are using fake advertising to spread malware
By MYBRANDBOOK
According to Cisco's Talos threat intelligence organization, a new malicious campaign has been gaining traction as an effective method to harvest information from unknowing users. Known as malvertising, Cisco's Talos Intelligence believes a specific campaign known as "Magnat" uses fraudulent online advertising to trick users that are searching for legitimate software installers. The Cisco threat intelligence team believes the Magnat campaign may have started in late 2018 and targets users in Canada, the United States, Australia, and several other European nations.
Once a user is directed to the fraudulent download, they run a fake installer that deploys three distinct pieces of malware to their system. While the fake installer gets to work installing multiple malware components, it does not install the actual application the user was originally searching for.
The first piece of malware is a password stealer used to collect user credentials, often via a common tool known as Redline. Another malware, MagnatBackdoor sets up remote access to the user's device via Microsoft Remote Desktop. This access, combined with the user credentials stolen by Redline (or a similar tool), can provide unfettered access to the user's systems despite being secured and firewalled. The final piece of the malware trifecta is a Chrome browser extension known as MagnatExtension, which is used for keylogging, obtaining screenshots of sensitive information, etc.
Talos believes the Magnat tools have been developed and improved over the course of several years and show no signs of slowing down anytime soon. The installer package's name is constantly evolving and typically references the name of popular applications to lend credibility and trick users into deploying the package. Examples of past package names include viber-25164.exe, wechat-35355.exe, build_9.716-6032.exe, setup_164335.exe, nox_setup_55606.exe and battlefieldsetup_76522.exe.
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
Microsoft to build a new data centre to support Thailand's tec
Microsoft has revealed intentions to construct a regional data centre as w...
SAP launches cloud services to help Indian scaleups innovate m
SAP at SAP unveils now "GROW with SAP for Scaleups," a new cloud service d...
SAMSUNG INDIA ELECTRONICS PVT. LTD.
LUMINOUS POWER TECHNOLOGIES PVT. LTD.
POLYCAB INDIA PVT. LTD.
WIPRO LTD.
Technology Icons Of India 2023: Natarajan Chandrasekaran
Natarajan Chandrasekaran is the Chairman of the Board of Tata Sons, th...
Technology Icons Of India 2023: Deepinder Goyal
Deepinder Goyal is the Founder and CEO of Zomato. Deepinder, or Deepi,...
Technology Icons Of India 2023: Josh Foulger
Josh is the Country Head of India and MD of Bharat FIH Ltd (A Foxconn ...
CSCs enabling rural India digitally empowered
Common service centres (CSCs) are digital access points under the Digi...
C-DAC keeps India ahead in IT & Electronics R&D space
Centre for Development of Advanced Computing (C-DAC) is the premier R&...
GSTN aims to integrate indirect tax ecosystem on a shared IT infrastructure
Goods and Services Tax Network (GSTN) has built Indirect Taxation plat...
SAVEX TECHNOLOGIES PVT. LTD.
Savex Technologies is the 3rd largest Information & Communication Tec...
REDINGTON INDIA LIMITED
Redington (India) Limited operates in the IT product distribution busi...
M. TECH SOLUTIONS (I) PVT. LTD.
M.Tech is a leading cyber security and network performance solutions ...