Scammers may pose as hackers with compromising data

Attackers are incorporating personal details like full names and phone numbers in scam emails to appear credible and induce panic among victims. Scammers may pose as hackers with compromising data, law enforcement agencies issuing fake summons, or even hired assassins demanding ransoms. These threats often leverage techniques to evade email filters and other security solutions, underscoring the need for heightened vigilance.

In the most common variant, scammers impersonate hackers who claim to have infiltrated the victim's devices. They allege to have access to cameras, microphones, browsing history, and sensitive files, often threatening to release explicit content captured via webcam or screen recordings supposedly taken whilst the victim was watching adult content. Demands typically evolve hundreds of US dollars in cryptocurrency, with promises to delete the data upon payment. These emails may include detailed narratives of the supposed breach, including explanations of malware types and advice on better security – ironically, tips that align with genuine best practices.

Dynamics of Windows Packet Divert detections. Source: Kaspersky

Once installed, the malware persists on a victim’s system, bypassing security measures and modifying critical system files.

In the report, Kaspersky highlights a case in which a YouTuber with 60,000 subscribers unknowingly helped distribute the malware. The creator initially posted videos demonstrating how to bypass certain online restrictions and included a link to a supposed restriction bypass tool.

However, the file was infected with SilentCryptoMiner. Later, they edited the infected video description to remove the link, replacing it with a warning stating that the program “does not work.”

By - Aaradhay Sharma