Jump to content











Photo
- - - - -

Zacinlo (Malware)


  • Please log in to reply
2 replies to this topic

#1 alacran

alacran

    Silver Member

  • Advanced user
  • 630 posts
  •  
    Mexico

Posted 21 June 2018 - 12:54 AM

 

Malware takes screenshots of users' desktops, and has been operating silently for six years

Researchers have uncovered a sophisticated rootkit-based adware, mainly prevalent on Windows 10 devices, that has been operating covertly for six years.

Dubbed Zacinlo, this rare strain of malware typically operates by silently rendering webpages in the background in hidden windows to simulate clicks and keyboard interactions, or can replace ads naturally loaded in an open web browser with its own ads to collect revenue.

The malware, subject to an extensive investigation by security company Bitdefender, is armed with a sophisticated array of features to ensure it remains undetected, and even quashes any 'competition', featuring an adware cleanup routine to remove any potential rivals in the adware space.

It can also uninstall or delete services based on instructions it receives from the command and control infrastructure, to which it routinely sends information about its environment, including what form of anti-malware services may be installed, and which applications are running on startup.

One of its most concerning features involves a significant invasion of privacy, with Zacinlo able to take screen captures of a user's desktop and send them to its command and control centre for analysis.

 

More info on Source:   http://www.itpro.co....10-pcs-security


  • Nuno Brito likes this

#2 Nuno Brito

Nuno Brito

    Platinum Member

  • .script developer
  • 10533 posts
  • Location:boot.wim
  • Interests:I'm just a quiet simple person with a very quiet simple life living one day at a time..
  •  
    European Union

Posted 22 June 2018 - 09:22 AM

Strange malware.



#3 Wonko the Sane

Wonko the Sane

    The Finder

  • Advanced user
  • 14290 posts
  • Location:The Outside of the Asylum (gate is closed)
  •  
    Italy

Posted 22 June 2018 - 02:37 PM

Strange malware.

.. and another reason why "pay per click" and more generally Internet advertisement monitoring and reporting is an extremely inexact science.

 

:duff:

Wonko






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users