This password-stealing malware just got updated with new tactics to help it hide better

[steven36]

Predator the Thief provided updated again; make sure your systems are patched and staff are alert to the risks of phishing.

 

 

A hacking campaign which infects victims with username and password-stealing malware has been updated with new tricks as cyber criminals look to make their attacks more efficient, stealthier and more lucrative.

 

Predator the Thief malware first emerged in July 2018 and is capable of stealing usernames, passwords, browser data and the contents of cryptocurrency wallets, as well as take photos using the infected victim's webcam.

 

The malware is commonly sold on underground hacking forums and has also featured as part of a bundle of six different forums of malicious software.

 

Predator the Thief is regularly updated with new capabilities and researchers at Fortinet's Fortiguard Labs have uncovered and analysed a new version of the malware – Predator the Thief v 3.3.4 – which was released on Christmas Eve.

 

It adds new phishing documents to use as the lure to hook victims, such as invoices; a previous campaign used a fake court summons are a lure. The malware has also been provided with more tricks to avoid detection and analysis, using shellcode to make the malware more effective at detecting debuggers and sandboxes – something it now checks for every five seconds.

 

Researchers also note the configuration of the command and control server is now more complex and detailed than it was previous versions and that encryption is used in the connection – another instance of making analysing the malware harder to do.

 

 

As well as this, Predator the Thief appears to have added some file-less capabilities, again making the malware trickier to monitor. "This makes it more difficult for analysts to analyze its damage to the victim system," said Yueh-Ting Chen, security analyst at Fortinet.

 

The will not operate in Armenia, Belarus, Kazakhstan, Kyrgyzstan, Moldova, Russia, Tajikistan, Turkmenistan, Ukraine, and Uzbekistan. Russian cyber criminals don't tend to target these countries and while the exact identity of the Predator the Thief creators aren't know, Fortinet has previously stated that it's "fairly certain" they're Russian-speaking.

 

The full list of Indicators of Compromise has been posted on the Fortiguard Labs analysis of the malware.

 

To help protect against Predator the Thief attacks, researchers have previously recommended that macros are disabled by default and users are educated about the dangers of enabling them. Ensuring that operating systems and software are both patched and up-to-date can also go a long way to stopping malware attacks being successful.

 

Source

[aum]

It's futile to try stop thievery.  Thieves are one of the most adaptable of us (humans). 

[mp68terr]

Correct me if I'm wrong...

Anti-virus, anti-malwares, anti-whatever, try to protect us against armies of virus, malwares and so on... but basically the problem is: the user who opens/clicks on what he/she should not open/click.

What can be done? Education? Training? Sounds like at the end it always fails. Phishing can seem so real that, whatever the technology, there will always be someone who push the wrong button.

[steven36]

7 minutes ago, mp68terr said:

Correct me if I'm wrong...

Anti-virus, anti-malwares, anti-whatever, try to protect us against armies of virus, malwares and so on... but basically the problem is: the user who opens/clicks on what he/she should not open/click.

What can be done? Education? Training? Sounds like at the end it always fails. Phishing can seem so real that, whatever the technology, there will always be someone who push the wrong button.

Yes because to every one person that been Educated there's 10 that's not . Most dont even read technology news .No one has stole anything  from me since the early 2000s so i know it can be prevented .

[aum]

Education means not intelligence (or wisdom).  There are fools and there are educated fools.

[steven36]

2 hours ago, aum said:

Education means not intelligence (or wisdom).  There are fools and there are educated fools.

Education means nothing if you dont have common sense  enough to comprehend and  know how to apply it . A lot people know how to read but  using it in the field is a different story . It like  depending  on apps to give you security there man made and anything  man made can fail you .  They are fools that are educated because they have more book sense than common sense . But if they achieved there goals in life and have a well paying  job they still better off  than a  non educated fool.  You can have all the wisdom in the world but if you don't  have a education to go with it  most likely no one is going to  hire you . so  you want go no were . So they has be a happy medium you have to have  a education to succeed if you too stupid to  succeed after  theres  no one to blame but yourself. I was raised  up poor and my parents  went  back to school and made something out of themselves  . So i know  how is to be on both sides of the tracks .

 

I dont even understand were you be coming from you dont make no sense even you say   It's futile to try stop thievery if you dont try and stop it people will take  every thing you  got. so you have no choice in life but try and stop it and yes it can be stopped  if it's from them putting a thief in prison  or on the end of a gun. While many people chose a life a crime many people rot in jail cells  and die because  of it . The jails are full of fools  who chose a life of crime many of my friends done time . Old saying is if you man enough to do the crime . your man enough to do the time.  

 

People stealing passwords  is no joke the worse thing  i ever had stole was a Yahoo account  years and years ago  lucky for me it had nothing of any real value in it . But i knew people who had  there banking info stole and account drained  they caught  the hacker who did  it and the money was insured , so no one suffered  in the end but the fool who did it.

[Guest]

17 minutes ago, steven36 said:

conman sense

or is it common sense?

[steven36]

6 minutes ago, Edward Raja said:

or is it common sense?

I fixed it   i have other challenges in life i have to  overcome  i have a very high iq  and lots of common sense but  I have dyslexia so i use spell checkers  and they mess  me up if i dont pay attention .

[aum]

34 minutes ago, Edward Raja said:

or is it common sense?

When dealing with thievery and thieves, a con-man sense is more protective.

[steven36]

3 minutes ago, aum said:

When dealing with thievery and thieves, a con-man sense is more protective.

Using con-man sense really is not wrong  because the 1st think you learn in law enforcement to catch a crook you have to think like a crook.

[steven36]