- Cloudic researchers get a supermodel version of the spectrum website
- Site people make trick in running AMOS by click fix method
- Researchers attributed the attack to the Russian -speaking group
Russian threatening actors have been seen using the famous click fix method to steal passwords and leave infoastiler malware on MacOS targets.
Cloud SEC security researchers have reported a spopping spectrum to several US -based telecommunications providers, several websites. Victims visiting these websites will be asked to confirm that they are human – however, “Verification” was designed to “fail”, after which the victims will be asked to use “alternative verification”.
It is unclear why the attackers added extra action – we can assume that the victims have to throw away and reduce their guards.
To cancel the access token
In any case, the “alternative verification” method copies a command on their clipboard, after which the victims are instructed to paste and run on their devices.
Command provides atomicos (AMOS) – a notorious Macos Infoastler that captures password, cryptocurrency purse data, and system information from MacOS users.
Cloudsic did not attribute the campaign to a particular danger actor, but he has decided that he is a Russian origin.
The company said, “By inspecting the source code of the delivery page, we received a couple of comments in Russian, which shows that malware is likely to spread through Russian -speaking cybercriminals.”
It does not seem that the campaign has targeted a specific group of people, or companies, but since it has given birth to the spectrum, it is safe to say that the victims are the current, or potential consumers of the company.
Experts noted that the campaign was brutally compiled: “Poor enforcement in delivery locations, such as similarities in platforms, refer to the rapidly collected infrastructure. This campaign is a multi -platform that targets both cohesive and corporate users.”
Click fix has become famous in recent days, with various protective organizations being reported to have been discovered different forms of technique in the jungle.
By Hacker news
