1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Ecommerce firms are being targeted by this dangerous malware - he

    From TechnologyDaily@1337:1/100 to All on Mon Jun 5 18:15:03 2023
    Ecommerce firms are being targeted by this dangerous malware - here's how to stay safe

    Date:
    Mon, 05 Jun 2023 17:00:12 +0000

    Description:
    Hackers are distributing Vidar malware again, don't fall for the trap

    FULL STORY ======================================================================

    If youre running an ecommerce business, be mindful of emails from alleged customers claiming they were erroneously charged, as these could well be phishing attempts looking to distribute malware .

    BleepingComputer obtained a copy of an email which, besides all of the above, shares a bank statement that serves as proof of the erroneous transaction.

    However, the bank statement ultimately leads to the deployment of the Vidar infostealer. There are also other methods that lead to the same endgame, including a fake Google Drive link with files such as bank_statement.scr". Fake transactions

    Vidar is an infamous trojan thats capable of stealing all kinds of sensitive information from the target endpoint, browser cookies, browser history, saved passwords, cryptocurrency wallets, text files, Authy two-factor
    authentication information, and more. Vidar is also capable of grabbing screenshots, too.

    Once the trojan collects sensitive data, it will create a folder containing all the information and upload it to a remote server, for the attackers convenience. After that, the contents of the folder will be deleted, leaving only an empty folder as proof of the exfiltration. Read more

    These are the best endpoint protection tools


    Top server maker added to US blacklist


    Banned Chinese firms are simply renting US cloud tech - and getting a
    pretty decent deal

    Usually, the threat actors would do one of two things with the stolen data: use it for stage two attacks (deploying ransomware , engaging in extortion, identity theft, wire fraud, or similar), or sell it on the black market for someone else to exploit.

    If you received an email such as this one which proved to be a fake, make
    sure to scan your computer with antivirus programs and endpoint security solutions to remove any possible malware or trojans. If the programs find evidence of compromise, its pivotal you change your passwords, especially those associated with money. Check out our list of the best VPN services to keep you safe

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/ecommerce-firms-are-being-targeted-by-this-dang erous-malware-heres-how-to-stay-safe


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)