Saturday, February 27, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

Rietspoof malware spreads via Facebook Messenger and Skype spam

February 19, 2019
in Internet Security
This malware spreading tool is back with some new tricks
586
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

Avast security researchers have discovered a new malware strain named Rietspoof that’s currently being spread to victims via instant messaging clients such as Facebook Messenger and Skype.

In a report published over the weekend, researchers described this new threat as a “multi-stage malware,” that was first spotted in August 2018, but which was largely ignored until a noticeable uptick in distribution efforts last month.

You might also like

Microsoft: We’ve open-sourced this tool we used to hunt for code by SolarWinds hackers

Oxford University lab with COVID-19 research links targeted by hackers

Fastest VPN in 2021 | ZDNet

Rietspoof’s main role is to infect victims, gain persistence on infected hosts, and then download other malware strains –depending on the orders it receives from a central command & control (C&C) server.

Persistence is gained by the malware by placing an LNK (shortcut) file in the Windows /Startup folder. This is a noisy operation because most antivirus products know to keep an eye on this folder, but Avast says Rietspoof is also signed with legitimate certificates, allowing the malware to bypass security checks.

The infection routine is made up of four different stages –described in greater detail in the Avast write-up here. The actual Rietspoof malware is dropped in stage three, with the last stage being reserved for downloading a more intrusive and potent malware strain.

Rietspoof is what security researchers call a “dropper” or “downloader,” a malware strain designed for the sole purpose of infecting victims with “something stronger.”

Because of this, it’s functionality is also very limited. It can download, execute, upload, and delete files, and, in case of emergencies, it can also delete itself. Nonetheless, these are more than enough for Rietspoof to do its job.

Avast says that since it began looking into this new threat, the malware has changed its C&C communication protocol, and has gone through other smaller modifications, which made researchers believe that it’s still under active development.

“Our research still cannot confirm if we’ve uncovered the entire infection chain,” said researchers on Saturday.

Rietspoof is the second “malware dropper/downloader” that has been seen picking up in activity in the past few months. The other one is named Vidar, a malware strain that has been helping various criminal gangs distribute ransomware and password stealers. An analysis of the Vidar malware is available here.

Related security coverage:

Credit: Source link

Previous Post

How to Hack Facebook Accounts? Just Ask Your Targets to Open a Link

Next Post

Marketing Technology Predictions: Martech in 2019

Related Posts

Microsoft: We’ve open-sourced this tool we used to hunt for code by SolarWinds hackers
Internet Security

Microsoft: We’ve open-sourced this tool we used to hunt for code by SolarWinds hackers

February 27, 2021
Oxford University lab with COVID-19 research links targeted by hackers
Internet Security

Oxford University lab with COVID-19 research links targeted by hackers

February 27, 2021
Fastest VPN in 2021 | ZDNet
Internet Security

Fastest VPN in 2021 | ZDNet

February 27, 2021
Berlin resident jailed for threatening to bomb NHS hospital unless Bitcoin ransom was paid
Internet Security

Berlin resident jailed for threatening to bomb NHS hospital unless Bitcoin ransom was paid

February 27, 2021
Chrome will soon try HTTPS first when you type an incomplete URL
Internet Security

Chrome will soon try HTTPS first when you type an incomplete URL

February 27, 2021
Next Post
Marketing Technology Predictions: Martech in 2019

Marketing Technology Predictions: Martech in 2019

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

AI & ML Are Not Same. Here's Why – Analytics India Magazine
Machine Learning

AI & ML Are Not Same. Here's Why – Analytics India Magazine

February 27, 2021
Microsoft: We’ve open-sourced this tool we used to hunt for code by SolarWinds hackers
Internet Security

Microsoft: We’ve open-sourced this tool we used to hunt for code by SolarWinds hackers

February 27, 2021
Is Wattpad and its machine learning tool the future of TV? — Quartz
Machine Learning

Is Wattpad and its machine learning tool the future of TV? — Quartz

February 27, 2021
Oxford University lab with COVID-19 research links targeted by hackers
Internet Security

Oxford University lab with COVID-19 research links targeted by hackers

February 27, 2021
The Education Industrial Complex: The Hammer We Have
Data Science

The Education Industrial Complex: The Hammer We Have

February 27, 2021
New AI Machine Learning Reduces Mental Health Misdiagnosis
Machine Learning

New AI Machine Learning Reduces Mental Health Misdiagnosis

February 27, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • AI & ML Are Not Same. Here's Why – Analytics India Magazine February 27, 2021
  • Microsoft: We’ve open-sourced this tool we used to hunt for code by SolarWinds hackers February 27, 2021
  • Is Wattpad and its machine learning tool the future of TV? — Quartz February 27, 2021
  • Oxford University lab with COVID-19 research links targeted by hackers February 27, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates