#vpn-malware
#vpn-malware

[ follow ]

Threat Actor Targeting VPN Users in New Credential Theft Campaign

Storm-2561 uses SEO poisoning and GitHub hosting to distribute trojans impersonating VPN software, stealing credentials through signed malware that evades detection.

Information security

fromThe Hacker News

3 days ago

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Storm-2561 uses SEO poisoning to distribute fake VPN clients that steal credentials by redirecting users to malicious websites hosting digitally signed trojans.

[ Load more ]

#vpn-malware#vpn-malware

Threat Actor Targeting VPN Users in New Credential Theft Campaign

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

#vpn-malware
#vpn-malware