The malware was dubbed "CopperStealer".
-
DURAND FLORENCE / SIPA
Called "CopperStealer", a new malware attempts to steal the passwords and identifiers of Internet users who have downloaded it, reports
Phonandroid on
Saturday.
It targets the main platforms such as Facebook, Instagram, Twitter but also Apple, Amazon, Paypal or Google accounts.
The malware was detected by Proofpoint cybersecurity researchers.
"Our investigation has shown that the malware is primarily designed to steal passwords and cookies, but it is also capable of installing malware after recovering data," Proofpoint points out in its report.
The program belongs to the Chinese malware lineage known as SilentFade.
We owe them the hacking of many Facebook accounts.
Present on sites offering pirated software
Proofpoint teams noticed that CopperStealer was spreading via sites offering pirated software downloads such as keygenninja [.] Com, pirateware [.] Com, startcrack [.] Com and crackheap [.] Net, specifies
Phonandroid
.
It would no longer be present on most of these sites, assures Proofpoint.
The malware ended up on the machines of users living mostly in India, Indonesia, Brazil, Pakistan and the Philippines.
To limit its spread, Proofpoint teams turned to Facebook and Cloudflare for help.
An action that was beneficial, because he seems to have left a good part of the sites on which he was present.
But to protect yourself, it is better to be equipped with an up-to-date anti-virus.
High-Tech
NimzaLoader: Undetectable New Malware Targets Windows Users To Steal Personal Data
High-Tech
AlienBot Banker: A virus threatening your banking data lurks in nine apps of the Play Store
Google
Apple
Cybersecurity
Facebook
High-Tech
Computer virus