Ovidiy Stealer - The New Password Stealing Malware

A new worrisome malware is in town! The malware which is designed to steal victims credentials such as passwords is now on sale by a Russian hacker. The malware which is available for as little as $7, providing wannabes with a worryingly easy entry point into the world of cybercrime.

Ovidiy Stealer is regularly updated by its Russian-speaking authors and the malware has hit targets around the world including the UK, the Netherlands, India, and Russia. Despite its low price the malware is designed to avoid analysis and detection. This a worrisome feature for small, medium and big organizations - How can you fight what you don't know?.

Discovered by guys from proofpoint, the malware is spread via a number of methods, including malicious email attachments, file-hosting websites, and even within software packages. This is a perfect malware for "Yahoo Boys" in Nigeria to operate with, as it features some of their attack Vectors.

It comes with functionality to target multiple applications, but buyers are able to purchase a version of the malware which only focuses on a single browser if they so wish.

If the malware is able to find passwords in its targeted applications, it will send them to the gang using it, putting the victim and their organisation at risk of compromise, especially if the same password is used across multiple accounts. In simple term, if the malware finds it's way to your PC, every website you have accessed being banks or your social media accounts, the login password credentials will be automatically sent to the attackers! That's trouble enough to be afraid of.

Payment for the malware is taken by RoboKassa, the Russian equivalent of PayPal.

For more details on Ovidiy Stealer head over to ZDNET 


No comments:

Post a Comment

Intel Tiger Lake CPUs to come with Anti-Malware Protection

Intel’s Tiger Lake CPUs will come with Control-flow Enforcement Technology (CET), aimed at battling common control-flow hijacking attacks. I...