‘MadMxShell’ leverages Google Ads to deploy malware via Windows backdoor

18 April 2024

An undetermined threat actor was observed weaponizing a cluster of domains masquerading as legitimate IP scanner software sites to distribute malware via a previously unseen Windows backdoor. In a blog post April 17, Zscaler ThreatLabz said the threat actor registered multiple look-alike domains using a typosquatting technique and leveraged Google Ads to push these fraudulent domains to the top of search engine results targeting specific search keywords, thereby luring potential victims to these IP scanner sites.

Source: SC Magazine

Date:

18 April 2024

Categorie(s):

NEWS

Tag(s):

Google Ads, IT, News

Cyberattack against United Russia claimed by Ukraine1 May 2024
US jails former NSA employee for attempting secret sale to Russia1 May 2024
Better identity threat detection sought by new Semperis ML-based tool1 May 2024
Oasis Security reels in $35M more to secure nonhuman identities1 May 2024
Senators grill UnitedHealth CEO on Change Healthcare cyberattack1 May 2024