Criminals are leveraging the Covid-19 epidemic to spread malware through a "Coronavirus Map" app that provides no useful information to victims but may provide the victims' user names, passwords, credit card numbers, and other sensitive information to the attacker.
The new campaign, described in a blog post by researchers at Reason Labs, uses a strain of malware called AZORult. AZORult is a data-stealer first recognized in 2016.
In addition to scraping data out of victims' Web browsers and applications, AZORult acts as a downloader, bringing additional malware onto an infected system. AZORult is commonly sold in online malware markets in Russia, and is one of the more commonly sold data-stealers in those forums.
For more, read here.
