Hackers spreading powerful malware via Omicron news emails

by IANS |

New Delhi, Jan 13 (IANS) Cyber-security researchers have unearthed that hackers are spreading a powerful malware via news around the new Omicron strain, stealing information and credentials from Windows users in at least 12 countries.


Researchers from cyber-security firm FortiGuard said that hackers are infecting devices with "RedLine" malware sent via emails, that steals all of the usernames and passwords it finds throughout an infected system.


"FortiGuard Labs recently came across a curiously named file, 'Omicron Stats.exe' which turned out to be a variant of RedLine Stealer malware. While we have not been able to identify the infection vector for this particular variant, we believe that it is being distributed via email," the company said in a statement.


Based on the information collected by FortiGuard Labs, potential victims of this RedLine Stealer variant are spread across 12 countries.


"This indicates that this is a broad-brush attack and that the threat actors did not target specific organisations or individuals," said the researchers.


The first reports of RedLine Stealer go back to at least March of 2020 and it quickly became one of the more popular infostealers sold in underground digital markets.


The Information harvested by RedLine Stealer is sold on the dark net marketplace for as low as $10 per set of user credentials.


The malware emerged just as the world began to deal with increased numbers of Covid patients and the growing fear and uncertainty that can cause people to lower their guard, which may have prompted its developers to use Covid as its lure.


"Past RedLine Stealer variants are known to have been distributed in Covid-themed emails to lure victims. The file name of this current variant, 'Omicron Stats.exe', was used just as the Omicron variant was becoming a global concern, following the pattern of previous variants," said the researchers.


Given that this malware is embedded in a document designed to be opened by a victim, "we have concluded that email is the infection vector for this variant as well".

Latest News
Global Covid caseload tops 357.9 mn Wed, Jan 26, 2022, 11:42 AM
TN celebrates 73rd Republic Day with patriotic fervour Wed, Jan 26, 2022, 11:39 AM
Participants of Oslo talks call for understanding, cooperation on Afghanistan Wed, Jan 26, 2022, 11:36 AM
2nd ballot to elect Italy's Prez fails, but strong candidatures start emerging Wed, Jan 26, 2022, 11:29 AM
US House Speaker Pelosi announces reelection bid in 2022 midterms Wed, Jan 26, 2022, 11:29 AM
US warns of fragile semiconductor supply chain as chip inventory falls Wed, Jan 26, 2022, 11:28 AM
France reports new daily record of over 500,000 Covid-19 cases Wed, Jan 26, 2022, 11:27 AM
Ironic when nation recognizes Azad's services, Cong doesn't: Sibal Wed, Jan 26, 2022, 11:21 AM
TN to restore water bodies for recharging groundwater level Wed, Jan 26, 2022, 11:20 AM
Blackmailed on Instagram, man commits suicide in Karnataka Wed, Jan 26, 2022, 11:09 AM
Karnataka launches 'Brain Health Initiative' to help people beat Covid stress Wed, Jan 26, 2022, 11:07 AM
Rajpath brims over with patriotic fervour as India celebrates R-Day Wed, Jan 26, 2022, 11:06 AM
India's Tokyo Games heroes come together to recite National Anthem Wed, Jan 26, 2022, 11:05 AM
Afghanistan complete whitewash to grab crucial Cricket World Cup Super League points Wed, Jan 26, 2022, 11:02 AM
Kerala Minister unfurls Tricolour upside down in Kasargod Wed, Jan 26, 2022, 11:01 AM