Oct 11, 2023
Data Thieves Test-Drive Unique Certificate Abuse Tactic
Posted by Shubham Ghosh Roy in categories: cryptocurrencies, cybercrime/malcode
https://informatech.co/3RVp6BM by Elizabeth Montalbano.
Attackers are employing a new type of certificate abuse in an attempt to spread info-stealing malware, with the aim of collecting credentials and other sensitive data. In some instances, the goal is to steal cryptocurrency from Windows systems.
The campaign uses search engine optimization (SEO) poisoning to deliver search results featuring malicious pages promoting illegal software cracks and downloads. In the background, the pages deliver remote access Trojans (RATs) known as LummaC2, and RecordBreaker (aka Raccoon Stealer V2) researchers from South Korea-based AhnLab revealed in a blog post on Oct. 10.
Continue reading “Data Thieves Test-Drive Unique Certificate Abuse Tactic” »