BleepingComputer cybersecurity experts: The malware group submitted a ZIP archive with the decryptors to VirusTotal and now it plans to switch to cryptojacking.
FFDroider Stealer is a new malware targeting social network platform users. Zscaler cybersecurity experts: Designed to steal credentials and cookies, it disguises itself as Telegram. The infection vector are cracked version of installers and freeware
FFDroider Stealer is a new malware targeting social network platform users. It has been discovered by Zscaler cybersecurity experts. Designed to steal credentials and cookies, it disguises itself on victim’s machines to look like Telegram. The infection vector is a malicious program embedded into cracked version of installers and freeware. Furthermore, the stealer signs into victims’ social media platforms using stolen cookies, and extracts account information like Facebook Ads-manager to run malicious advertisements with stored payment methods and Instagram via API to steal personal information. FFDroider also has a downloader functionality to upgrade itself with new modules from an update server. Web browsers targeted by the malware include Google Chrome, Mozilla Firefox, Internet Explorer, and Microsoft Edge. The websites targeted encompass Facebook, Instagram, Twitter, Amazon, eBay, and Etsy.