Fake Movie injects malicious content into high profile sites
#1
Quote:A malicious Windows shortcut file disguised as a movie on The Pirate Bay torrent tracker is capable of injecting malicious content from the attacker into high-profile websites as well as for stealing cryptocurrency.

A security researcher who goes by the twitter handle 0xffff0800 discovered the malware masquerading as a video file for the movie  “The Girl in the Spider’s Web” that was actually a .LNK shortcut that executed a PowerShell command.

The researcher shared samples of the malware to Bleeping Computer’s Lawrence Abrams who further analyzed samples and learned the malware is capable of poisoning Google, Wikipedia, Yandex and other high profile search sites, according to a. Jan. 12 blog post.

On Google, for example, the malware could inject malicious search result onto a user’s page so that the attacker’s promoted content appear at the top of a user’s results.

Source: https://www.scmagazine.com/home/security...ile-sites/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
QOwnNotes 19.1.6
24.12.4 The wel...Kool — 12:56
INTEL Arc Graphics 32.0.101.6325/6253 dr...
Highlights Fix...harlan4096 — 11:06
GFYI [Official] Revo Uninstaller Pro v5...
"Share feedback...damien76 — 09:01
GFYI [Official] SpyShelter PRO v15 Chri...
Merry Christmas and ...damien76 — 08:56
GFYI [Official] IObit Christmas 2024 Bl...
Merry Christmas and ...damien76 — 08:54

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
No upcoming birthdays.

[-]
Online Staff
harlan4096's profile harlan4096
Administrator

>