A cybercriminal operation that’s been targeting France since May is attempting to distribute malware capable of recording the screens of victims who visit pornographic websites.
In other cases, the malware sends out spam emails that merely intend to trick victims into believing their web sessions were recorded while they watched porn, even though they were not. This spambot functionality has also been used to send out sketchy surveys and promotions designed to entice victims into entering their personal and credit card information.
Dubbed Varenyky, the malware also can deploy and abuse NirSoft’s WebBrowserPassView and Mail PassView password recovery tools for web browsers and email clients in order to steal victims’ passwords. Varenyky has been previously referenced on Twitter by malware analysis service ANY.RUN. But last week, researchers from ESET published a blog post that provided further details into the threat.
“This spambot is not very advanced, but the context and story around it make it interesting,” the ESET blog post states. “Many functions have been added an ..
Support the originator by clicking the read the rest link below.
