MY BRAND BOOK New information-stealing malware targeting Facebook accounts

New information-stealing malware targeting Facebook accounts

By MYBRANDBOOK

A new Ducktail phishing campaign is spreading a never-before-seen Windows information-stealing malware written in PHP used to steal Facebook accounts, browser data, and cryptocurrency wallets. Ducktail phishing campaigns were first revealed by researchers in July, who linked the attacks to Vietnamese hackers.

Zscaler has spotted the signs of new activity involving a refreshed Ducktail campaign that uses a PHP script to act as a Windows information-stealing malware. Ducktail has now replaced the older NET Core information-stealing malware used in previous campaigns with one written in PHP.

The campaigns relied on social engineering attacks through LinkedIn, pushing .NET Core malware masquerading as a PDF document supposedly containing details about a marketing project. The malware targeted information stored in browsers, mainly focusing on Facebook Business account data, and withdrew it to a private Telegram channel that acted as a C2 server. These stolen credentials are then used for financial fraud or to conduct malicious advertising.

Most of the fake lures for this campaign are related to games, subtitle files, adult videos, and cracked MS Office applications. These are hosted in ZIP format on legitimate file hosting services. When executed, the installation takes place in the background while the victim sees fake ‘Checking Application Compatibility’ pop-ups in the frontend, waiting for a fake application sent by the scammers to install.

The stealer’s code is an obfuscated (Base64) PHP script, which is deciphered directly on memory without touching the disk, minimizing the chances of being detected. The targeted data includes extensive Facebook account details, sensitive data stored in browsers, browser cookies, cryptocurrency wallet and account information, and basic system data.

Users are advised to be alert with instant messages on LinkedIn and treat file download requests with extra caution, especially cracked software, game mods, and cheats.

BREAKING NEWS

Indian startup OneAIChat announces unified interface for leading ...

An Indian startup, OneAIChat has built a multi-modal AI aggregator to sav...

TCS and AWS to accelerate customers’ cloud migration and offer ...

Tata Consultancy Services has forged a strategic alliance with Amazon Web...

ESET provides enhanced enterprise security through a newly develo...

ESET is pleased to present the ESET Mobile Threat Defence module (EMTD) ...

Telecom operators write to DoT seeking ban on illegal WiFi device...

In a move that may see the widening of the gulf between telecom operators a...

TECHNO TRENDS

SAP launches cloud services to help Indian scaleups innovate m

SAP at SAP unveils now "GROW with SAP for Scaleups," a new cloud service d...

Denodo and Sonata form alliance to unlock data-to-value creati

Denodo and Sonata Information Technology India Limited (SITL) have annou...

Google Play Store will now let users download two apps simulta

Google Play Store now lets users download two apps simultaneously. While a...

Google Pay has added "Open Wallet" shortcut

With the introduction of the "Open Wallet" shortcut, Google Pay has impro...

E-Magazine

TECHNOTAINMENT

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

Salman Khan trolled for singing with B Praak at Anant Ambani's

To celebrate Mukesh Ambani's youngest son Anant Ambani’s 29th birthday

Disney+ Hotstar wins the Best OTT Platform of the year

Film Critics Guild and Group M Motion Entertainment, in collaboration with

MOVERS & SHAKERS

DigiCert names Atri Chatterjee as CMO

Amagi names its Chief Product Officer

Amagi announced the appointment of Richard Perkett as its Chief Product Of

Nium Appoints Alexandra Johnson appoints as Chief Payments Off

Nium, the leader in real-time cross-border payments, today announced the ap

OPEN YOUR EYES

How to secure confidential data while working remotely

Capitalising on agility to win the digital banking competition

Growing cyberattacks is a raising concern ,it’s time to evaluate cloud-first strategy

The Security Threat is looming the BFSI Segments

Building of a secure infrastructure is highly essential to stop malicious activity

INTERVIEWS

MEASURE AND IMPROVE YOUR SECURITY POSTURE WITH KEYSIGHT

HPE Aruba Networking bridging the physical and digital worlds

The information technology industry is a critical component of the 21st cen

Committed to follow future roadmap with 'Make-in-India' 2.0 Vi

As technology advances, AI is used in increasingly disparate ways to help a

HOT PICK

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap

MAKE IN INDIA BRANDS

EXIDE INDUSTRIES LTD.

LUMINOUS POWER TECHNOLOGIES PVT. LTD.

MICROMAX INFORMATICS LTD.

JUVAS SOLUTIONS PVT. LTD.

EMINENT CIO'S OF INDIA

Working in concert with the convergence of innovative technology, the Real Estate industry is witnessing growth

There is a lot of scope of technology innovation u...

Success of digital initiatives are judged by user experience

Digital technologies implemented in a business are...

Always staying at the forefront of the technology

Our vigilant Security Operations Center (SOC) proa...

ICONS OF INDIA

Technology Icons Of India 2023: Rajiv Memani

As Chair of the EY Global Emerging Markets Committee, Rajiv connects e...

Technology Icons Of India 2023: Dr. Sanjay Bahl

Sanjay Bahl is currently with the Indian Computer Emergency Response T...

Technology Icons Of India 2023: Dilip Asbe

Dilip Asbe is the MD & CEO of National Payments Corporation of India (...

PARTNER SPEAKERS

Iris Global Services prides itself in prioritizing customer’s needs and overcoming IT challenges

Considering India’s fast-growing economy, the future of the Indian IT indust...

BM Infotrade prioritising digital transformation and CX, while fostering innovation and agility

Undoubtedly people tend to resist the change and find it difficult to adapt to...

Staying abreast with the latest technologies in this Digital age is the mantra to unlock business opportunities

The IT industry in India is witnessing a significant shift towards digital tra...

PSU

TCIL continues to strengthen India with its technology expertise

TCIL undertakes consultancy & turnkey projects in the field of Telecom...

BEL leveraging next generation technologies to keep the country ahead in Defence space

Bharat Electronics Limited (BEL) is a Navratna PSU under the Ministry ...

NIC bridging the digital divide and supporting government in eGovernance

The National Informatics Centre (NIC) is an Indian government departme...

VIDEOS

Top 25 Brands

Most Trusted Brands 2023 : Reliance Jio Infocomm Limited

Jio’s vision is to transform India with the power of digital revolution, to...

Most Trusted Brands 2023 : Samsung Electronics India Pvt. Ltd.

Samsung brings the latest cutting-edge technologies at an affordable price to ...

Most Trusted Brands 2023 : Intel Technology India Pvt. Ltd.

Intel has unique assets and a strong, open ecosystem that gives Intel a compe...

Value-Added Distribution

INTEGRA MICRO SYSTEMS PVT. LTD.

Integra is a leading provider of innovative hi-technology products an...

INGRAM MICRO INDIA PVT. LTD.

Ingram Micro India, a large national distributor offers a comprehensiv...

IRIS GLOBAL SERVICES PVT. LTD.

Iris Global services is one of the leading distribution houses that d...

ITFORUM 2024

WIITF 2024

CMO of the Year

WOMEN LEADERSHIP

EMINENT CIO's OF INDIA

TRENDS IN TECHNOLOGY