IObit is a software developer for Windows system optimization and anti-malware programs like the Advanced SystemCare.
Over the weekend, Windows utility developer IObit was hacked to facilitate a widespread attack for distributing the DeroHE ransomware to IObit forum members.
Research reveals that the ransomware operators hacked the IObit forum to create a fake promotion page and host the ransomware download. It is quite likely that the attackers gained access to an administrative account after hacking the forum.
All IObit forums still appear compromised, and the pages return a 404 error code, and the web page displays dialogs to subscribe to browser notifications. If a user visits the web page, the browser starts receiving desktop notifications for promoting unwanted content, such as adult sites and malicious software.
See: Hackers cloned NordVPN website to drop banking trojan
IObit is a software developer for Windows system optimization and anti-malware programs like the Advanced SystemCare.
Forum Members Received Phony Emails
The problem with IObit started when this weekend, the forum members started receiving phony emails disguised to be sent by IObit. The emails stated that the recipient would receive a special perk as a free one year license to IObit products for being a forum member.
Image: BleepingComputer
The weird emails were sent from IObit’s official email address. Some of the products offered were system optimizers and MS Windows security solutions. The emails contain a Get it Now button. When the recipient clicks on this button, they are redirected to a ransomware distribution page. They download a ZI ..
Support the originator by clicking the read the rest link below.
