An email asks the victim to open a link to confirm the delivery details. It directs to a fake courier page in which user has to digit only the password.
Here it comes Shikitega: a new Linux IoT devices malware. AT&T cybersecurity experts: Delivered in a multistage infection chain, It also executes XMRig Monero miner
Shikitega is a new malware targeting Linux IoT devices. This has been discovered by AT&T cybersecurity experts. The malicious code is delivered in a multistage infection chain where each module responds to a part of the payload and downloads and executes the next one. An attacker can gain full control of the system, in addition to the XMRig cryptocurrency Monero miner that will be executed and set to persist. Moreover, Shiketega uses a polymorphic encoder, and it gradually delivers its payload where each step reveals only part of the total payload. In addition, the malware abuses known hosting services to host its command and control servers.