1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Bot malware could be the next big security risk for you to worry

    From TechnologyDaily@1337:1/100 to All on Thu Mar 2 19:30:03 2023
    Bot malware could be the next big security risk for you to worry about

    Date:
    Thu, 02 Mar 2023 19:15:17 +0000

    Description:
    Swiping entire user profiles is a huge risk, as they can be used to bypass MFA.

    FULL STORY ======================================================================

    Bot malware , where incidents automated malicious code capable of
    exfiltrating entire user profiles from target endpoints, are on the rise, a new report from NordVPN has warned.

    The company's research claims that the data of five million people has been stolen by bot malware since 2018, covering 26.6 million usernames and passwords , including almost a million Google credentials, and more than a million Microsoft and Facebook logins combined.

    Bot malware is more dangerous than your average malware, because by stealing entire user profiles, they enable the operators to bypass multi-factor authentication protection. Bypassing MFA

    When a criminal hacks a password, they cannot complete the identity authentication if the user has MFA enabled. However, if a criminal obtains their victims cookies and device configuration information, they can trick
    the security systems and avoid MFA activation. Because bot malware provides criminals with the entire digital identity of their victims it presents a brand new set of risks, said Adrianus Warmenhoven, cybersecurity advisor at NordVPN. Read more

    This new Linux malware floods machines with cryptominers and DDoS bots


    Millions of people have had their data sold on bot markets


    Check out the best endpoint protection services right now

    What makes these attacks even more dangerous is the fact that the barrier for entry is quite low. Even unskilled hackers can use these user profiles to log into people's accounts and use them for various nefarious purposes.

    For example, they can steal people's Facebook accounts and impersonate them
    to ask for money, deliver malware, or promote dangerous and fake narratives. They can even use the obtained information to target businesses with phishing emails, the researchers concluded.

    Whats more, they dont even need to deliver the bot malware to target
    endpoints themselves. They can simply purchase the data on the dark web. The average price for a single persons dataset is roughly $6, it was said.

    To protect yourself, use an antivirus at all times. Other measures that could help a password manager and file encryptions tools to make sure that even if a criminal infects your device, there is very little for them to steal, adds Adrianus Warmenhoven. Check out the best firewalls right now



    ======================================================================
    Link to news story: https://www.techradar.com/news/bot-malware-could-be-the-next-big-security-risk -for-you-to-worry-about


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)