Threat Actors Mimics Ukraine’s IT Army To Spread Malware

March 11, 2022

Threat actors are taking advantage of people’s desire to join Ukraine’s IT army to infect them with malware.

The threat actors are doing this by promoting a fake DDoS tool on Telegram. The tool is said to have the capacity to install a password and information-stealing trojan.

According to Cisco Talos researchers, the fake DDoS tool mimics a DDoS tool called the “Liberator.” Liberator is a website bomber used against Russian propaganda outlets.

The versions of the tool downloaded from the real site are “clean” and are considered illegal to use. However, those circulated on Telegram channels are fake and hide malware payloads.

It is difficult to differentiate the original tool from the fake since the two tools are not signed digitally.

Researchers urged users not to join others in conducting cyberattacks. Apart from the fact that those engaging in such attacks could have issues with their country’s law enforcement agencies, they could also expose themselves to attacks.

For more information, read the original story in BleepingComputer.

Threat Actors Mimics Ukraine’s IT Army To Spread Malware

Top Stories

OpenAI and Anthropic go head-to-head with same-day AI model launches

Wikipedia positions itself as a defence against AI slop

French prosecutors raid X offices as Grok investigation widens

TELUS, L-SPARK partner to give startups access to domestic AI compute

Software shares drop as AI agents rattle investors

OpenAI looks beyond Nvidia for chip alternatives

Related Articles

Researcher uncovers large-scale malware campaign hidden in AI bot marketplace

Millions of Fortinet devices exposed in active authentication-bypass attacks

Docker patches critical AI flaw that allowed code execution via container metadata

Breach on Canada Computers website may have exposed payment data

TND Newsdesk

TND Newsdesk

Jim Love

Follow Us

Popular categories

Tech News Delivered