The security researchers of malware hunter team at Reason Labs have discovered a new attack variant in which hackers hid malware in an officially appearing corona virus card. It searches for sensitive data.
Malware Campaign Targets Coronavirus Information
As part of the malware campaign, users are shown a fake page instead of the real map for the spread of coronavirus or Covid-19. Although it presents itself as a deceptively real-looking map from a trustworthy institution. In the background, the malware affects the users computers. The aim is to access sensitive data such as passwords or credit card numbers that have been saved in the browser.
The cybercriminals work with the Azorult malware, which was first discovered 4 years ago. Russian hackers are reportedly currently debating on Azorult’s capabilities in forums as a suitable tool to steal sensitive data from computers. According to hacker news, the malware is also available in a variant that creates a hidden admin account to enable connections via the remote desktop protocol.
Hackers Also Infect Computers With Corona Virus
Do cybercriminals have morals and scruples? Maybe. It may well be that there are certain limits that they do not exceed. But taking advantage of the fear of epidemics is not one of them. This shows a current phishing campaign with a particularly tasteless presentation, as the IT security providers report. The fraudulent emails use the name and logo of the World Health Organization. Supposedly, the recipient could download security information about the corona virus using the link in the email. Cybercriminals take every opportunity to find new victims whose data they steal or whose smartphones and computers take over and can infect with ransomware. If you open the file, the expected information coronavirus diseases is displayed. The data for this are taken from a reputable source, which in turn provides a real interactive map. This is harmless and not infected with the malware.