As per Kapersky research, attackers are using Youtube videos to dupe users into installing malware (trojan) - RedLine. “Discovered in March 2020, RedLine is currently one of the most common Trojans used to steal passwords and credentials from browsers, FTP clients and desktop messengers,”[1]
Attackers post convincing videos on YouTube allegedly about cheat codes for popular online games: Rust, FIFA 22, DayZ and more. The videos then prompt actions, for e.g., to follow a link in the description to download a self-extracting archive and then installing further. The video creator also suggests to remove windows SmartScreen protection (that protects MS edge users from phishing and malicious sites), if the download fails the video creators kindly
Once installed, RedLine attempts to steal valuable information on the computer like Account passwords, Card details, Session cookies for logging in to accounts without passwords, Cryptowallet keys, Messenger chat history and could also add special effects like Computer slowdown, GPU wear and tear, Higher electricity bills.
In addition, RedLine can execute commands on the computer, as well as download and install other programs onto the infected machine.
DOs:
Use multi-factor authentication wherever possible.
Use only trusted links for downloads
DON'Ts
Don't store sensitive information without encryption.
Don't disable protection features on your computer, including browser filtering or real time protection
Ref:
[1]: https://securelist.com/self-spreading-stealer-attacks-gamers-via-youtube/107407/
Comments