It has been discovered by the cybersecurity expert MalwareHunterTeam. The lure is a supposed unusually activity on the victim’s account. The goal: steal PII and sensitive data.
The company is investigating. The cyber security experts: Maybe the threat actor exploited a bug reported in February 2019, but not yet fixed, related to accounts linked to GooglePay.
Zerofox cyber security experts: It runs similarly to software as-a-service (SaaS) products and it’s targeting Paypal, Apple, Amazon and other platforms. The aim is credential theft.
The cyber security experts: The malware ask for 0.09981 Bitcoin to unlock the files and doesn’t affect computers in Russia, Belarus, Kazakhstan, Tajikistan, or Ukraine.