Experts at Kaspersky Lab have identified a new virus that not only steals information but also mines cryptocurrency on infected devices. The new Trojan is called SteelFox.
SteelFox is distributed under the guise of unofficial software used to activate popular programs for free.
In particular, we are talking about fake activators for AutoCAD — an automated design and drafting system, Foxit PDF Editor — an application for editing PDF documents, and JetBrains products — tools for developing in popular programming languages. You can find SteelFox on forums, torrent trackers, and GitHub.
This malware has mining and stealing capabilities: it uses the resources of infected computers to mine cryptocurrency, and also steals users' personal data and transmits it to attackers.
To minimize potential hazards, Kaspersky Lab recommends:
— install programs only from trusted sources;
— keep the operating system and all installed programs up to date.
Prior to this, Russian energy companies, factories, suppliers, and developers of electronic components faced virus attacks caused by spyware called Unicorn. According to Kaspersky Lab, the malware is unique in its strategy.
Earlier, www1.ru reported that fraudsters had learned how to launch a Trojan virus through Telegram channels about finance. Hackers add archives containing malicious files with the extensions .lnk, .com, and .cmd to publications. When a user opens these files, the DarkMe.C virus enters their device.
Read materials on the topic:
Own security engines: Kaspersky Lab introduced a next-generation firewall
A new fraud scheme has appeared in Telegram under the guise of "security tips"