A new malware propagation campaign uses YouTube as the main platform to infect its victims. The target is the followers of games like FIFA, final Fantasy, LEGO Star Wars, Forza Horizon and Spider-Man, who are persuaded to download the virus through fake videos containing tutorials, tips and tricks for games from these franchises.
Malware is capable of spreading on its own. As soon as it is installed on the victim's computer, with the promise that by doing so they will have access to free games, exclusive content, mods and cheats, the malware uses the victim's YouTube channel to publish fraudulent videos without their consent, taking advantage of these spaces to expose more individuals to the threat.
The infection not only includes the transmission of the virus, but also the theft of victims' personal information. According to Kaspersky, the security company that issued the alert about this cyber threat, the malicious package also contains the RedLine stealer, a well-known malware capable of stealing passwords, cookies (also responsible for the YouTube intrusion), credit card data and other browser information, in addition to hacking messaging apps and cryptocurrency wallets .
As it is a attack on gamers, the malicious program includes a cryptocurrency miner that uses the processing power of the victim's computer to obtain benefits for the criminals. The viruses are installed using a modified installer of the NirCmd application, a command-line utility for Windows that acts as a backdoor without security applications detecting anything unusual.
The victim may lose their YouTube channel, as well as your money and your personal accounts on gaming sites, social networks and email; Once you realize you've been hacked, it may be too late. Additionally, there is the tremendous demand on computing resources that cryptocurrency mining imposes, which can reduce the lifespan of the victim's computer components and increase the cost of their electric bill.
Kaspersky experts urge caution when downloading files, especially if they involve cheating or game piracy. Users should limit themselves to downloading material from official and reputable sites and developers, and avoid clicking on links shared on any social network., and use an antivirus that helps prevent the installation of malware and notifies the risk of accessing sites of dubious credibility.
Expert in SEO/SEM and communication on social networks.
CEO at tecnologia.net and passionate about everything related to technological progress
