Malware Spreads via Legit Platforms: YouTube, File-Sharing Sites Targeted
Cybersecurity experts have warned of a rise in sophisticated malware distribution tactics. Threat actors are now targeting legitimate platforms like YouTube and exploiting them to spread infostealers. Recent cases involve the Vidar and LummaC2 infostealers, which have evolved to bypass detection and evade sandboxes.
In November 2023, the Vidar infostealer was used in a social engineering campaign targeting Booking.com. Meanwhile, LummaC2 has integrated new anti-sandbox features, making it harder to detect. Threat actors are shifting their tactics, moving away from creating new channels and instead targeting existing ones with substantial followings. One such instance saw a channel with over 800,000 subscribers repurposed for malware distribution.
Malware files are being uploaded to file-sharing platforms like MediaFire, compressed with password protection to evade detection. This method has been used to distribute Vidar and LummaC2 infostealers. Furthermore, threat actors are leveraging legitimate software cracking channels to spread malware. In May 2023, a channel with over 100,000 subscribers was used to distribute the RecordBreaker stealer.
The evolution of malware distribution tactics highlights the importance of regular security updates and vigilance. Users should be cautious of unexpected software cracks and be wary of legitimate-looking channels that may have been compromised. Security researchers advise staying informed through reliable sources to stay ahead of emerging threats.
Read also:
- Web3 social arcade extends Pixelverse's tap-to-earn feature beyond Telegram to Base and Farcaster platforms.
- Over 5,600 Road Safety Violations Caught in Manchester Trial
- Quintauris & Everspin Team Up to Boost RISC-V Reliability in Automotive
- Jaguar Land Rover Resumes Production After Cyberattack, UK Govt & Banks Provide £3.5B Support