A newly discovered malicious campaign that distributes the RedLine Stealer infostealer comes with a very interesting self-propagation mechanism, researchers have found. 

Cybersecurity experts from Kaspersky uncovered new malware that logs into the YouTube accounts of compromised users and uploads a video to their channel, which distributes RedLine Infostealer.

A victim, ideally a PC gamer, finds a YouTube video on cracks, or cheats, for one of their favorite games: either FIFA, Final Fantasy, Forza Horizon, Lego Star Wars, or Spider-Man. In the video’s description are links that claim to hold those cracks and cheats which, in fact, host multiple malware bundled together.

Cryptojackers, infostealers

In the bundle is RedLine Stealer, one of the most popular infostealers nowadays, capable of stealing passwords stored in people’s browsers, cookies, credit card details, instant messaging conversations, and cryptocurrency wallets. 

The bundle also holds a cryptojacker, essentially a cryptocurrency miner which uses the computing power of the compromised endpoint to mine certain cryptocurrency for the attackers. Cryptocurrency mining usually requires significant GPU power, something most gamers usually have.

But perhaps most interestingly, the bundle has three malicious executables, used for self-propagation. These are called “MakiseKurisu.exe”, “download.exe”, and “upload.exe”. MakiseKurisu is an infostealer that grabs browser cookies and stores …read more

Source:: TechRadar – All the latest technology news


NASA Chooses Spacex To Launch A Self Propelled Space Station To The Moon

Leave a Reply

Your email address will not be published. Required fields are marked *