Tag Archives: fake

Bad actors are using fake Zoom, Microsoft’s Skype and Google Meet websites to distribute malware.

As discovered by Zscaler ThreatLabz researchers, threat actors have been impersonating video conferencing brands to spread various malware targeting both Android and Windows users since December 2023.

The spoofed sites, designed in Russian and hosted on URLs eerily similar to their legitimate versions, suggest that attackers are employing “typosquatting” tactics to entice potential victims into downloading malware — meaning some users might not notice the typo in the domain and so believe they will be on the legitimate website.

Zscaler ThreatLabz wrote:

The attacker utilized shared web hosting, hosting all these fake online meeting sites on a…

Cybersecurity researchers have uncovered a new cyber-threat involving fraudulent Skype, Google Meet and Zoom websites aimed at spreading malware. 

The campaign, uncovered in December 2023 by Zscaler’s ThreatLabz, saw perpetrators distributing the SpyNote remote access Trojan (RAT) to Android users and NjRAT and DCRat to Windows users. These malicious URLs and files were identified on fake online meeting websites, posing significant risks to users.

The attackers utilized shared web hosting, housing all fake meeting sites on a single IP address, all in Russian. The fake sites closely mimicked genuine platforms, making them more convincing to unsuspecting users.

“When a user visits one of the fake sites, clicking on the Android button initiates the download of a malicious APK…

Android and Windows users, beware of fake online meeting sites such as Google Meet, Zoom, and Skype, infecting devices with malicious malware like SpyNote RAT for Android, NjRAT, and DCRat.

Zscaler’s ThreatLabz cybersecurity researchers have discovered a new scam where Remote Access Trojans (RATs) are distributed through online meeting platforms, targeting Android and Windows users with malware. The purpose is to distribute malware that can steal sensitive data and control infected devices.

Researchers discovered a threat actor creating fraudulent websites for spreading malware, including SpyNote RAT for Android and NjRAT and DCRat for Windows, in December 2023. These RATs can steal confidential information and log keystrokes. Users are lured through fake online…

Security researchers have observed a highly sophisticated phishing campaign targeting employees of the US Federal Communications Commission (FCC), as well as popular crypto exchanges Binance, Coinbase, Kraken, and Gemini.

The as-yet-unidentified threat actor is going after people’s login credentials for Okta, researchers from Lookout found.

Leading perpetrator of online investment scams, which cost Australians and New Zealanders billions of dollars, unmasked in new report.

Infoblox has released a report unmasking Savvy Seahorse as a leading perpetrator of online cybercriminal investment scam websites.

The threat actor has operated in the shadows since at least 2021 and its target victims include people in Australia and New Zealand (A/NZ).

Savvy Seahorse uses Facebook ads to lure in victims and convince them to open accounts, make deposits and invest in companies including Tesla and Meta.

Once deposited, the cybercriminal gang then transfers the funds to a bank in Russia.

Its tactics, techniques, and procedures (TTPs) also include ChatGPT and WhatsApp bots imitating online webchats to encourage victims…