The recently discovered weaponized coronavirus map found to infect victims with a variant of the information-stealing AZORult malware has been sold online by Russian language cybercrime forums, according to a new report.
Security expert Brian Krebs states in a blog post published this week that the live, interactive map dashboard was part of an infection kit designed for a Java-based malware deployment operation.
Reportedly, the forums began selling the kit starting late last month. Prospective buyers with a Java code signing certificate can buy the kit for $200, but the price jumps to $700 if the purchaser wants to buy the seller’s certificate, Krebs’ report adds.
The sales thread on the forum also reportedly says that an attacker’s malware payload can be bundled with the Java-based map into a filename in such a manner that most Webmail providers will allow the message to successfully reach the target. A video demonstration on the forum also shows that Gmail will overlook the malicious bundle, albeit with a warnin ..
Support the originator by clicking the read the rest link below.
