Fake Adobe Flash update hides cryptocurrency malware

[harlan4096]

Hiding malicious packages in update installers is nothing new. Cyber criminals exploit users’ ignorance/gullibility by hiding malware inside seemingly legitimate update packages. We are more familiar with seeing such disguised malware with just one purpose; to take over the user’s system after being installed. Usually, when run, the typical fake update installer will silently install the malicious payload and show no other visible activity.

These recent type of fake updaters  use pop-up notifications from the legitimate Flash installer, in an attempt to appear legitimate. Said fake Flash update installers, while updating the victim’s Flash Player will concurrently install an XMRig cryptocurrency miner. Since the malware is installed in the background, the user will not notice anything suspicious.

Full reading: https://latesthackingnews.com/2018/10/18...y-malware/