Threat actors use search engine advertisements to impersonate popular software authors and redirect Internet users to malicious websites
This week, the ESET research team has published a report describing a malware campaign targeting Chinese-speaking people in Southeast and East Asia. The campaign involves malicious ads appearing on Google search and directing people to bogus websites that mimic the websites of popular apps such as Firefox, WhatsApp, Signal, Skype, and Telegram, but apart from providing legitimate software, also present a Remote Access Trojan named FatalRAT.
What kind of dirty tricks does FatalRAT do and how does it try to avoid detection? Find out in the video and be sure to read the full report:
This isn’t the app you’re looking for: a fake installer targeting Southeast and East Asia