fbpx

Users should be careful of unidentified videos! Hackers spread Trojan horse programs widely through YouTube video links!

23/10/2021

Cyber ​​threat intelligence company “Cluster25” found malicious activities of password-stealing Trojans on YouTube. Once users click on the link, they may be harmed!

There have been disguised software similar to YouTube on the Internet, or the installation of malicious links under YouTube to disseminate Trojan horse programs. Recently, a large number of malicious activities of two Trojan horses that steal passwords have been discovered on YouTube, including RedLine malware and Racoon Stealer Trojan horse program.

This kind of program will quietly implant a password-stealing Trojan program in the computer, connect with the remote C&C master server, and wait for further instructions from the hacker.

Screenshot window screen to steal credit card password

Hackers may steal passwords, take screenshots of windows, browse cookies or credit card numbers, etc., or even view all files on the computer, or launch attacks or blackmail through other malicious software.

“Cluster25” researcher said that hackers will establish a large number of YouTube channels, which are full of software cracking, free authorization, operating instructions, or content related to cryptocurrency, mining, game plug-ins, etc., and insert links in the description column to attract The user clicks to launch an attack, and will push the RedLine malware, and the other way will promote the Racoon Stealer Trojan.

 

 

Upload 100 videos in 20 minutes

Once the user clicks on the bit.ly link, he will be redirected to a file-sharing website, which will quietly implant malware on the user’s computer. If the user is watching a video with a domain containing a non-short URL, he will be directed to a file located at taplink.ccc and trigger the push of the Racoon Stealer Trojan.

 

Hackers can upload 100 new videos within 20 minutes and create 81 YouTube accounts. They use a large number of videos and channels to launch large-scale attacks. In response to this matter, Google responded that the reason why malicious attackers were able to establish so many malicious video channels was because they used a large number of stolen accounts and spread malicious software over and over again.

 

 

 

Stay vigilant when surfing the Internet

Therefore, this also highlights the importance of staying vigilant on the Internet. You must never download programs from unknown sources. You must be careful even with strange YouTube channels and make sure that the channels you usually watch have been hacked. If you are not sure whether the downloaded program is safe, you can upload it to the VirusTotal free malware analysis website to scan for viruses before execution to ensure safety.

You May Also Like…