Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
New Toolkit Pushes Malware via Fake Program Update Alerts in 30 Languages
#1
Bug 
Quote:A new social engineering toolkit called Domen has been discovered that uses fake browser and program update alerts on compromised sites to infect users with malware and remote access software.
 
Attackers using fake browser and flash player update alerts to spread malware is nothing new [123], but this new toolkit discovered by Malwarebytes researcher Jérôme Segura has a high level of sophistication and customization that allows it to adapt to different clients, browsers, and visitors.
 
When loaded on a compromised site, the Domen toolkit will display a variety of alerts that overlay the site's legitimate content. These fake alerts are designed to trick users into downloading the "update", executing it, and infecting themselves with a payload of the attacker's choice.
 
"Loaded as an iframe from compromised websites (most of them running WordPress) and displayed over top as an additional layer, it entices victims to install so-called updates that instead download the NetSupport remote administration tool," Segura stated in his report. "In this blog we describe its tactics, techniques and procedures (TTPs) that remind us of some past and current social engineering campaigns."

Read more here: https://www.bleepingcomputer.com/news/se...languages/
[-] The following 3 users say Thank You to silversurfer for this post:
  • dhruv2193, harlan4096, ismail
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
AWZ Screen Recorder
AWZ Screen Recorder ...zevish — 11:05
Website X5 Go 2024.1
Website X5 Go 2024.1...zevish — 09:32
Apple's rules to allow third-party app ...
Apple has announ...alison30 — 09:28
Intel: Microsoft AI PCs need a Copilot K...
Microsoft hopes th...harlan4096 — 08:55
Synchredible 8 Professional Edition v8.2...
          Synchredib...zevish — 08:54

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
No upcoming birthdays.

[-]
Online Staff
There are no staff members currently online.

>