Threat Actors Mimics Ukraine’s IT Army To Spread Malware

March 11, 2022

Threat actors are taking advantage of people’s desire to join Ukraine’s IT army to infect them with malware.

The threat actors are doing this by promoting a fake DDoS tool on Telegram. The tool is said to have the capacity to install a password and information-stealing trojan.

According to Cisco Talos researchers, the fake DDoS tool mimics a DDoS tool called the “Liberator.” Liberator is a website bomber used against Russian propaganda outlets.

The versions of the tool downloaded from the real site are “clean” and are considered illegal to use. However, those circulated on Telegram channels are fake and hide malware payloads.

It is difficult to differentiate the original tool from the fake since the two tools are not signed digitally.

Researchers urged users not to join others in conducting cyberattacks. Apart from the fact that those engaging in such attacks could have issues with their country’s law enforcement agencies, they could also expose themselves to attacks.

For more information, read the original story in BleepingComputer.

Threat Actors Mimics Ukraine’s IT Army To Spread Malware

Top Stories

OpenAI amends Pentagon deal after backlash over surveillance concerns

QuitGPT: OpenAI faces consumer backlash after DoD deal

Bell, Telus withdraw CRTC complaints over network sharing

eBay cutting 800 jobs amid strategic realignment

U.S. Pentagon presses Anthropic to lift AI use restrictions

Canada ‘disappointed’ as OpenAI fails to offer new safety protocols after B.C. school shooting

Related Articles

Researchers identify thousands of live Google API keys with Gemini access

Non-admin consent in Entra ID opens door to email compromise

Android malware taps Google’s Gemini AI, but Google says users are safe

Over 10 million U.S. users affected in Conduent data breach

TND Newsdesk

TND Newsdesk

Jim Love

Follow Us

Popular categories

Tech News Delivered