Just In
- 3 hrs ago Xiaomi Robot Vacuum Cleaner S10, Handheld Garment Steamer, and Redmi Buds 5A Launched in India
- 4 hrs ago Lenovo Unveils IdeaPad Pro 5i Laptop With Intel Core Ultra 9 Processor – Check Price, Specs
- 4 hrs ago Lava ProWatch Zn, ProWatch Vn Smartwatches Launched in India: Check Price, Specs, Availability
- 5 hrs ago Google Podcasts to Shut Down Globally in June 2024: Here's How to Transfer Your Podcasts to YouTube Music
Don't Miss
- Sports CSK vs LSG, IPL 2024: All Records And Statistics Behind Ruturaj Gaikwad's Maiden Century As Chennai Captain
- News Centre Seeks Modification Of 2012 2G Spectrum Verdict In Supreme Court
- Movies Lavaste OTT Release Date: Manoj Joshi EXCLUSIVE Interview On ZEE5 Film, Omkar Kapoor
- Finance IRCON, RITES: 2 Multibagger Navratna Railway Stocks Potential To 17-24% Upside Ahead; Assigned BUY Rating
- Lifestyle Anant Ambani-Radhika Merchant's Wedding Function Details Are Out, Check out Ambani Bahu-To-Be's Chic Fashion!
- Education Meet Naima Khatoon, First Vice Chancellor of AMU, Know Her Background and Education Qualification
- Automobiles Nissan Magnite Achieves 1 Lakh Unit Sales Milestone: Consistency Helps
- Travel Kurnool's Hidden Gems: A Guide To Exploring India's Lesser-Known Treasures
Beware of this new malware on Facebook Messenger
If the user's Facebook account is set to log in automatically, "Digmine" will manipulate Facebook Messenger in order to send a link to the file to the account's friends.
The year 2017 has proved to be a lucrative year for cybercrime. There were prominent malware and ransomware attacks this year and it looks like the methods continue to evolve at a frightening pace. While many have been creatively bypassing existing security solutions these malware simple, yet highly effective are causing rapid destruction globally.
Having said that a new cryptocurrency-mining bot, named "Digmine", that was first observed in South Korea, is spreading fast through Facebook Messenger across the world, Tokyo-headquartered cybersecurity major Trend Micro has warned. After South Korea, it has since spread in Vietnam, Azerbaijan, Ukraine, the Philippines, Thailand, and Venezuela. It is likely to reach other countries soon, given the way it propagates.
Facebook Messenger works across different platforms but "Digmine" only affects the Messenger's desktop or web browser (Chrome) version. If the file is opened on other platforms, the malware will not work as intended, Trend Micro said in a blog post. "Digmine" is coded in AutoIt and sent to would-be victims posing as a video file but is actually an AutoIt executable script.
If the user's Facebook account is set to log in automatically, "Digmine" will manipulate Facebook Messenger in order to send a link to the file to the account's friends. The abuse of Facebook is limited to propagation for now, but it wouldn't be implausible for attackers to hijack the Facebook account itself down the line. This functionality's code is pushed from the command-and-control (C&C) server, which means it can be updated.
A known modus operandi of cryptocurrency-mining botnets and particularly for "Digmine" (which mines Monero), is to stay in the victim's system for as long as possible. It also wants to infect as many machines as possible, as this translates to an increased hash rate and potentially more cybercriminal income, the blog post stated. The malware will also perform other routines such as installing a registry autostart mechanism as well as system infection marker. It will search and launch Chrome then load a malicious browser extension that it retrieves from the C&C server.
If Chrome is already running, the malware will terminate and relaunch Chrome to ensure the extension is loaded. While extensions can only be loaded and hosted from the Chrome Web Store, the attackers bypassed this by launching Chrome via command line.
Inputs from IANS
-
99,999
-
1,29,999
-
69,999
-
41,999
-
64,999
-
99,999
-
29,999
-
63,999
-
39,999
-
1,56,900
-
79,900
-
1,39,900
-
1,29,900
-
65,900
-
1,56,900
-
1,30,990
-
76,990
-
16,499
-
30,700
-
12,999
-
14,999
-
26,634
-
18,800
-
62,425
-
1,15,909
-
93,635
-
75,804
-
9,999
-
11,999
-
3,999