The report by the Doctor Web researchers said that after the previous incident, the VSDC developer’s computer was compromised many times, as recently the website was hacked during the 21 February 2019 to 23rd February 2019. The VSDC team said that they have worked on the vulnerability that let hackers attack the site, whereas researchers said the attack happened again many times. These JavaScript files were used to drop "AZORult Stealer, X-Key Keylogger and the DarkVNC backdoor" on the computers of the victims. Ivan Korolev, a malware analyst at Doctor Web said that during that incidents the download links were exchanged with the link directing the visitors to JavaScript files by the hackers. The three specific dates, June 18, July 2 and July 6 were also mentioned when the attackers were active. In July 2018, a Chinese security firm, Qihoo 360 Total Security found out that hackers have breached the security of VSDC website. VSDC boasts nearly 13 million users, which makes this incident even more dangerous considering the number of potential victims. This intrusion was discovered by the researchers of Doctor Web, according to whom the hackers hijacked and infected the downloadable files on the website and made visitors of the site download the banking Trojan, Win32.Bolik.2, as well as the editing software.
Banking Trojan and information stealer were spreading through the download links.
Hackers once again got control of VSDC, a free multimedia editor website.
0 kommentar(er)
