Hackers spreading powerful malware via Omicron news emails

by IANS |

New Delhi, Jan 13 (IANS) Cyber-security researchers have unearthed that hackers are spreading a powerful malware via news around the new Omicron strain, stealing information and credentials from Windows users in at least 12 countries.


Researchers from cyber-security firm FortiGuard said that hackers are infecting devices with "RedLine" malware sent via emails, that steals all of the usernames and passwords it finds throughout an infected system.


"FortiGuard Labs recently came across a curiously named file, 'Omicron Stats.exe' which turned out to be a variant of RedLine Stealer malware. While we have not been able to identify the infection vector for this particular variant, we believe that it is being distributed via email," the company said in a statement.


Based on the information collected by FortiGuard Labs, potential victims of this RedLine Stealer variant are spread across 12 countries.


"This indicates that this is a broad-brush attack and that the threat actors did not target specific organisations or individuals," said the researchers.


The first reports of RedLine Stealer go back to at least March of 2020 and it quickly became one of the more popular infostealers sold in underground digital markets.


The Information harvested by RedLine Stealer is sold on the dark net marketplace for as low as $10 per set of user credentials.


The malware emerged just as the world began to deal with increased numbers of Covid patients and the growing fear and uncertainty that can cause people to lower their guard, which may have prompted its developers to use Covid as its lure.


"Past RedLine Stealer variants are known to have been distributed in Covid-themed emails to lure victims. The file name of this current variant, 'Omicron Stats.exe', was used just as the Omicron variant was becoming a global concern, following the pattern of previous variants," said the researchers.


Given that this malware is embedded in a document designed to be opened by a victim, "we have concluded that email is the infection vector for this variant as well".

Latest News
Delhi Police asks Cyber Cafes to maintain visitors' record Sat, Sep 24, 2022, 01:13 PM
Kolkata App fraud: Prime accused Amir Khan arrested from Ghaziabad Sat, Sep 24, 2022, 01:12 PM
LS polls: BJP gears up for 'Mission 32' in Bihar Sat, Sep 24, 2022, 01:08 PM
India logs 4,912 fresh Covid cases, 37 deaths Sat, Sep 24, 2022, 01:07 PM
Kolkata prison inmate attempts suicide, critical Sat, Sep 24, 2022, 01:06 PM
Recent raids at PFI premises was called 'Operation Octopus': Sources Sat, Sep 24, 2022, 01:05 PM
Supreme Court stays probe against former Karnataka CM Yediyurappa Fri, Sep 23, 2022, 02:50 PM
As PFI activists go berserk, Kerala HC initiates suo motu proceedings Fri, Sep 23, 2022, 02:48 PM
Lingayat mutt sex scandal: Karnataka court to pronounce order today Fri, Sep 23, 2022, 02:14 PM
SP boycotts Assembly proceedings over Allahabad University agitation Fri, Sep 23, 2022, 02:12 PM
Nupur Sharma controversy: SC transfers all FIRs against journalist Navika Kumar to Delhi Fri, Sep 23, 2022, 02:09 PM
India reports 5,383 new Covid cases, 20 deaths Fri, Sep 23, 2022, 02:08 PM
Seven confirmed cases amid Uganda's rare strain of Ebola virus Fri, Sep 23, 2022, 12:26 PM
Tesla recalls 1.1 mn vehicles to prevent drivers from pinching by windows Fri, Sep 23, 2022, 12:23 PM
Apple releases new update to fix iPhone 14 Pro camera vibration Fri, Sep 23, 2022, 12:05 PM