Kaspersky Lab experts have identified a new virus that not only steals information, but also mines cryptocurrency on infected devices. The new Trojan is called SteelFox.
SteelFox is distributed under the guise of unofficial software that is used to activate popular programs for free.
In particular, we are talking about fake activators for AutoCAD — an automated design and drafting system, Foxit PDF Editor — an application for editing PDF documents, and JetBrains products — tools for developing in popular programming languages. You can find SteelFox on forums, torrent trackers, and GitHub.
This malware has capabilities for mining and stealing: it uses the resources of infected computers to mine cryptocurrency, and also steals users' personal data and transmits it to attackers.
To minimize potential hazards, Kaspersky Lab recommends:
— install programs only from trusted sources;
— keep the operating system and all installed programs up to date.
Prior to this, Russian energy companies, factories, suppliers and developers of electronic components faced virus attacks caused by spyware called Unicorn. As Kaspersky Lab noted, the malware is unique in its strategy.
Earlier www1.ru reported that fraudsters have learned how to launch a Trojan virus through Telegram channels about finance. Hackers add archives containing malicious files with the extensions .lnk, .com and .cmd to publications. When a user opens these files, the DarkMe.C virus enters their device.
Read materials on the topic:
Own security engines: Kaspersky Lab introduced a next-generation firewall
A new scam has appeared in Telegram under the guise of "security tips"
