Trending

Stories

Fake Telegram Messenger Apps Hacking Devices With Lethal Malware

Must Read

Cyber-security researchers have warned that fake Telegram Messenger apps are currently hacking devices, including PCs, with Windows-based malware that can put your information at risk as it evades the installed anti-virus systems.

According to a report by Minerva Labs, founded in 2014 by former officers of the Israeli Defence Forces who served in elite cyber forces, fake installers of the Telegram messaging application are being used to distribute the Windows-based ‘Purple Fox’ backdoor on compromised systems.

Also Read

“We found a large number of malicious installers delivering the same ‘Purple Fox’ rootkit version using the same attack chain. It seems like some were delivered via email, while others we assume were downloaded from phishing websites,” said researcher Natalie Zargarov.

“The beauty of this attack is that every stage is separated to a different file which is useless without the entire file set. This helps the attacker protect his files from AV (anti-virus) detection,” the researcher informed.

During the investigation, they found that the threat actor was able to leave most parts of the attack under the radar by separating the attack into several small files, most of which had very low detection rates by (antivirus) engines, “with the final stage leading to Purple Fox rootkit infection”.

First discovered in 2018, ‘Purple Fox’ comes with rootkit capabilities that allow the malware to be planted beyond the reach of anti-virus solutions, reports thehackernews.com.

In October 2021, Trend Micro researchers uncovered a .NET implant dubbed FoxSocket deployed in conjunction with Purple Fox.

“The rootkit capabilities of Purple Fox make it more capable of carrying out its objectives in a stealthier manner,” the researchers noted.

“They allow Purple Fox to persist on affected systems as well as deliver further payloads to affected systems.”

Zargarov said they have often observed threat actors using legitimate software to drop malicious files.

“This time, however, is different. This threat actor was able to leave most parts of the attack under the radar by separating the attack into several small files, most of which had very low detection rates by AV engines, with the final stage leading to Purple Fox rootkit infection, the researcher noted.

Stay updated

Subscribe to our newsletter and never miss an update on the latest tech, gaming, startup, how to guide, deals and more.

Latest

Stories

- Advertisement -
- Advertisement -

Latest

Grow Your Business

Place your brand in front of tech-savvy audience. Partner with us to build brand awareness, increase website traffic, generate qualified leads, and grow your business.

- Advertisement -

Related

- Advertisement -
- Advertisement -
Amazon Echo Pop: Stylish Semi-Sphere Smart Speaker in India Redmi Display A27: Affordable 27 Inches Monitor with 100Hz Refresh Apple Music Classical App Now Available on Android WhatsApp’s Companion Mode: Same Account, Multiple Devices Nvidia & MediaTek Collaborate on Connected Car Tech Sony Unveils Project Q: A Next-Gen Handheld Game Console Snapchat Hits 200M+ Users in India, Introduces AI Chatbot Super Mario Bros. Movie: 6.4 Million Tickets Sold in Japan Samsung Galaxy A14 Launches in India with Impressive Features BGMI Returns: Battlegrounds Mobile India Now on Play Store
Amazon Echo Pop: Stylish Semi-Sphere Smart Speaker in India Redmi Display A27: Affordable 27 Inches Monitor with 100Hz Refresh Apple Music Classical App Now Available on Android WhatsApp’s Companion Mode: Same Account, Multiple Devices Nvidia & MediaTek Collaborate on Connected Car Tech Sony Unveils Project Q: A Next-Gen Handheld Game Console Snapchat Hits 200M+ Users in India, Introduces AI Chatbot Super Mario Bros. Movie: 6.4 Million Tickets Sold in Japan