駭客架設多個冒充不同廠牌防毒軟體的網站,針對Windows、安卓裝置散布惡意程式
支付動態 · 2024-05-28
資安業者Trellix發現,駭客架設多個廠牌防毒軟體的冒牌網站,目的是對Windows電腦、安卓裝置植入惡意程式,並對受害裝置挖掘機敏資料
駭客假借提供知名應用程式,藉此散布惡意軟體的情況不斷發生,而最近隨著資安威脅加劇,有人乾脆佯稱提供防毒軟體來引誘使用者上當,而且,這樣的情況連續發生數起。
資安業者Trellix提出警告,他們看到宣稱提供防毒軟體的冒牌網站,鎖定Windows及安卓用戶而來。這些網站號稱提供Avast、Bitdefender、Malwarebytes的防毒軟體,攻擊者藉此散布不同的惡意程式。
其中,他們看到冒牌Avast網站(avast-securedownload.com)是專門針對安卓用戶而來,一旦用戶下載APK檔案並安裝,裝置就會被對方控制,從而部署或刪除套件、讀取通話記錄及簡訊、得知其網路連線狀態。此外,攻擊者還會將其用於挖礦,並追蹤其地理位置。
而對於冒牌的Bitdefender、Malwarebytes網站bitdefender-app.com、malwarebytes.pro,駭客則是用來對Windows電腦散布竊資軟體Lumma Stealer、StealC。
值得一提的是,Trellix研究人員也發現冒充自家產品元件的執行檔AMCoreDat.exe,此惡意程式會在特定資料夾建立多個檔案,並寫入有效酬載的部分內容,再透過AutoIt3重新編譯而成。攻擊者這麼做的目的,就是迴避防毒軟體的偵測。
Popular articles
Brazil Proposes Raising Gambling Tax Rate to 24%, With Revenue Allocated to Social Security and Healthcare
Regulation
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
1spin4win grows its Latin American presence by partnering with Fortuna Juegos
Online Game
New Jersey July Gambling Revenue Hits $606M, Sweeps Casinos Banned
Regulation
Across 6 Cities: HUIDU Invites You to 8 World Cup Parties Redefining High-Value Social Networking
HUIDU Focus
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
Vietnam's tightening online gaming policy creates new market opportunities
Southeast Asia
GGC Awards 2026 Shines in Colombo: Honoring Leaders and Innovators in the iGaming Industry
HUIDU Focus
1spin4win releases unique slot Don Catleone Hold and Win featuring gangster cats
Online Game
GAT Expo Puerto Rico Will Pulse with the New Era of Gaming in the Caribbean
Marketing
Indiana online casino bill stalls in House committee
Regulation
British gambling levy rates confirmed for each vertical
Regulation
B2B Tech Infrastructure Gains Momentum in Philippine Gaming Sector
Southeast Asia
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
