A newly discovered attack campaign has been abusing the online storage platform Bitbucket to maintain and update a wide assortment of malware, in a plot to infect computer users who download free, cracked versions of commercial software from the internet.
Researchers at Cybereason’s Nocturnus team, who uncovered the threat, estimate that more than 500,000 machines worldwide have already been affected.
A typical infection in this campaign begins with the installation of the Predator the Thief and Azorult information stealers, but can subsequently result in the deployment of the Evasive Monero Miner, STOP ransomware, the Vidar info stealer, the Amadey bot trojan and the IntelRapid cryptocurrency stealer.
“Due to the variety of malware types deployed in this attack, attackers are able to hit victims from all sides and do not have to limit themselves to one attack goal or another,” explains a blog post today from Cybereason Nocturnus researchers Lior Rochberger and Assaf Dahan.
The attackers behind the campaign created numerous Bitbucket user accounts to hos ..
Support the originator by clicking the read the rest link below.
