Cybercriminals continue to prey on hackers by infecting their systems with dangerous malware capable of stealing their credentials, credit card details, cryptocurrencies, and even their Facebook and Amazon accounts.
According to a new press release (opens in a new tab) from cybersecurity firm Kaspersky, the NullMixer malware is currently being distributed by cybercriminals through websites that offer to crack, generate keys, or activate illegally downloaded software.
When an unsuspecting user tries to download cracked software from third-party sites, he is repeatedly redirected to a website that contains a password-protected archived program along with detailed instructions. Although everything looks normal, when a user follows the instructions provided, it actually launches NullMixer. This removes various malware files including downloaders, spyware, backdoors and other threats on your computer.
NullMixer also drops other malware onto a victim’s machine, including the notorious RedLine thief that looks for credit card and cryptocurrency wallet data and Disbuk. By stealing cookies from Facebook and Amazon, Disbuk allows attackers to hack your Facebook and Amazon account.
So far, more than 47,000 users have been infected by NullMixer. In addition to stealing a user’s online accounts, this malware is actually capable of spying on them and capturing any information they type on their keyboard.
Using SEO to your advantage
(Image credit: Unsplash)
Ranking high on Google is important for any website, and by using search engine optimization (SEO) tools, the cybercriminals behind this campaign have made their malicious websites are even easier to find.
According to Kaspersky, when a potential victim searches for “cracks” or “keygens” in Google Search, they are more likely to find sites known to distribute NullMixer. Since the beginning of this year, the company’s antivirus software has blocked attempts to infect nearly 50,000 users with the countries most targeted by NullMixer including Brazil, India, Russia, Italy, Germany, France, Egypt, Turkey and the United States.
Kaspersky security researcher Haim Zigel provided more information about this new malware campaign in a press release (opens in a new tab)saying:
“Any download of files from unreliable resources is a real game of roulette – you never know when it will trigger and what threat you will have this time. By receiving NullMixer, users receive several threats at once. Any information you type on the keyboard will be available to to attackers: from the messages you write to your friends on Facebook, the address you use to order from Amazon, to your device logins and passwords, or cryptocurrency accounts and credit card details.As a result, everything the device with all your information is now in the hands of cybercriminals. Keep this in mind when you decide to download something from an unknown site, because this threat can always be avoided by using only licensed products and robust security solutions.”
How to stay safe from NullMixer
To prevent your bank information from being stolen and your online accounts compromised, Kaspersky recommends that users only download software from trusted sources. This is because malware and other unwanted programs are often distributed through third-party sites, as they tend to have less security.
At the same time, you should never download pirated software or other illegal content, even if you are redirected from a legitimate website. Likewise, you should frequently check your online accounts for suspicious activity and unknown transactions.
Installing one of the best internet security suites can help you stay safe online and protect you from downloading malware and other viruses. If you get infected with NullMixer, you may also want to invest in the best identity theft protection so you can recover your stolen financial accounts.
Today’s best antivirus service deals
[ad_2]
Source link
