Criminals are leveraging the Covid-19 epidemic to spread malware through a "Coronavirus Map" app that provides no useful information to victims but may provide the victims' user names, passwords, credit card numbers, and other sensitive information to the attacker.
The new campaign, described in a blog post by researchers at Reason Labs, uses a strain of malware called AZORult. AZORult is a data-stealer first recognized in 2016.
In addition to scraping data out of victims' Web browsers and applications, AZORult acts as a downloader, bringing additional malware onto an infected system. AZORult is commonly sold in online malware markets in Russia, and is one of the more commonly sold data-stealers in those forums.
For more, read here.
Check out The Edge, Dark Reading's new section for features, threat data, and in-depth perspectives. Today's featured story: "Out at Sea, With No Way to Navigate: Admiral James Stavridis Talks Cybersecurity."