One of the cybersecurity firm CloudSEK Report Many such phishing websites have been discovered which are tricking users into downloading malware by using fake verification pages. In this, the attackers have created many websites spreading malware and have added fake human verification system to them. This system is similar to Google’s CAPTCHA page. In normal CAPTCHA, users have to check some boxes or perform tasks related to some pattern to prove that they are not a bot, but in fake pages, the user is asked to run some unusual commands.
In one such case, researchers have detected a fake verification page on which users were being asked to run a PowerShell script. PowerShell consists of a series of commands that can be run in the Run dialog box. In this case the commands were pulling content from a.txt file hosted on a remote server. It was prompted to download and extract a file on the Windows system, which introduced the Lumma Stealer malware into the system.
In this report, a list of such URLs is also given which were delivering malware to the users of Windows system. CloudSEK researchers also found that content delivery networks (CDNs) were being used to spread these fake verification pages. These researchers have also advised companies to implement endpoint solutions and provide training to workers on how to avoid this malware. Apart from this, the threat from Lumma Stealer can also be avoided by regularly updating the patching systems.
Gadgets 360 for the latest tech news, smartphone reviews and exclusive offers on popular mobiles. Android Download the app and follow us Google News Follow on.
Devices, Windows, Cybersecurity, Laptop, Market, Demand, Workers, Training, Warning, Malware, CAPTCHA, Google, Report, Computer