Hackers Use Fake OnlyFans Content To Steal Data By Dropping Malware: Report – News18

A malware marketing campaign is distributing faux OnlyFans content material and grownup lures in an effort to set up the distant entry trojan ‘DcRAT’ on victims’ gadgets to steal knowledge and credentials, or to deploy ransomware on the contaminated machine.

OnlyFans is a content material subscription service the place paid subscribers can entry non-public photographs, movies, and posts from grownup fashions, celebrities, and social media personalities.

According to BleepingComputer, the brand new marketing campaign, found by eSentire, has been energetic since January 2023, spreading ZIP recordsdata containing a VBScript loader that the sufferer is tricked into manually executing, believing they’re about to entry premium OnlyFans collections.

The an infection chain is unknown, but it surely might come from malicious discussion board posts, prompt messages, malvertising, and even black search engine optimization websites rating excessive in particular search phrases.

Moreover, the report stated that DcRAT is able to keylogging, webcam monitoring, file manipulation, and distant entry, in addition to stealing net browser credentials and cookies and stealing Discord tokens.

DcRAT additionally features a ransomware plugin that targets all non-system recordsdata and appends the “.DcRat” filename extension to encrypted files.

Meanwhile, researchers have observed a surge of malware written for the Android platform that is attempting to impersonate the popular AI chatbot ChatGPT application to target smartphone users.

According to researchers from Palo Alto Networks Unit 42, these malware variants emerged along with the release by OpenAI of GPT-3.5, followed by GPT-4, infecting victims interested in using the ChatGPT tool.

(This story has not been edited by News18 staff and is published from a syndicated news agency feed – IANS)