Tuesday, July 27, 2021
400 July

Pension 1500 gif

Shaheed 50 lakh gif

Kisan Karza 5.64 lakh gif

Kisan 48 hours gif

Ashirwad 51000 gif

Markfed New Gif

Innocent Admission

This malware prevents users from browsing pirated websites

- Advertisement -
New Delhi, June 22, 2021 (Agency) Cybersecurity researchers have found an interesting piece of malware that, instead of stealing passwords or to extort a computers owner for ransom, blocks infected users computers from being able to visit a large number of websites dedicated to software piracy. However, the malware appears murky.

Researchers at Sophos, a global leader in next-generation cybersecurity, have detailed a curious cyberattack campaign that targets users of pirated software with malware designed to block access to websites hosting pirated software.

The developers disguise the malware as cracked versions of popular online games such as Minecraft and Among Us, as well as productivity tool such as Microsoft Office, security software and others.

The disguised malware is distributed via the BitTorrent platform from an account hosted on “ThePirateBay” digital file sharing website.

“Links to the malware are also hosted on Discord. Once installed, the malware blocks the victim’s access to a long list of websites, including many that distribute pirated software,” the researchers said in a blog post.

The researchers were not able to discern a provenance for this malware.

“But its motivation seemed pretty clear: It prevents people from visiting software piracy websites (if only temporarily), and sends the name of the pirated software the user was hoping to use to a website, which also delivers a secondary payload,” they explained.

Andrew Brandt, principal threat researcher, Sophos, said: “Sometimes it is easy to see clearly what an adversary’s end game is and why they have chosen a particular approach to achieve it. This is not one of those times”.

On the face of it, the adversary’s targets and tools suggest this could be some kind of anti-piracy vigilante operation.

“However, the attacker’s vast potential target audience — from gamers to business professionals — make the ultimate purpose of this operation a bit murky,” Brandt cautioned.

At least some of the malware, disguised as pirated copies of a wide variety of software packages, was hosted on game chat service Discord.

Other copies, distributed through Bittorrent, were also named after popular games, productivity tools, and even security products, accompanied by additional files that make it appear to have originated with a well-known file sharing account on ThePirateBay.

In this malware case, the attackers use an age-old approach of modifying the HOSTS file settings on an infected device to “localhost” a long list of websites, thereby blocking the user’s access to them.

The malicious files are compiled for 64-bit Windows 10 and then signed with bogus digital certificates that wouldn’t pass more than a very rudimentary check.

“Once downloaded and installed by a user, the malware hunts for files named 7686789678967896789678 and 412412512512512. If it finds them it stops any further launch of the attack,” said Sophos researchers.

The malware also triggers a fake error message to appear when it runs, which asks people to re-install the software, they added.

Subscribe to YesPunjab Telegram Channel & receive important news updates

- Advertisement -

Yes Punjab - TOP STORIES

Punjab News

Sikh News

Transfers, Postings, Promotions

- Advertisement -spot_img

Stay Connected

20,369FansLike
111,892FollowersFollow

ENTERTAINMENT

National

GLOBAL

OPINION

Attack on Chinese in Pakistan

Who is behind the attack on Chinese in Pakistan – by Amjad Ayub Mirza

The deadly attack, carried out on July 15, on a coach carrying Chinese engineers to an under-construction tunnel site at the 4300 MW Dasu...
Coexistence

Coexistence, a unifying factor for Indians – by Asad Mirza

For most political parties, sociologists and psephologists what a common Indian on the street thinks matters most. It is an insight into a common...
Taliban Afghanistan

Taliban’s Next Stop: Kabul, Kashmir and Kerala – by Amjad Ayub Mirza

The speedy advance of the Taliban from northern Afghanistan to Kabul in the eastern section of the country could not have been achieved without...

SPORTS

Health & Fitness

Diabetes Check

Covid-19 may bring a new wave of diabetes: Study

New York, July 24, 2021- While diabetes is known to be a risk factor for severe Covid outcomes, researchers are now observing a new long-term health concern in patients hospitalised with Covid-19 -- an increase in new-onset hyperglycemia, or high levels of blood sugar lasting months after the infection. Researchers from the Boston Children's Hospital assessed the health of 551...

Gadgets & Tech

error: Content is protected !!