Warning for the Copyright Strike on YouTube used in the Malware Campaign.
YouTube users are not foreigners for security warnings as attackers use everything from private video messages forged from CEO to lure the Fortnite and Call of Duty game fraud as bait to steal passwords and compromise accounts for unfair use. Now researchers in Kaspersky have discovered a new attack campaign specifically aiming for YouTube users on the Windows platform and using a three copyright strike and you are out of tactic in order to further a malware distribution operation. Here’s what you need to know.
Bypass tool of accessing youtube access installs cryptominating malware
When we talk about online attacks, hackers, fraudsters and criminals of all kinds are using increasingly sophisticated, often led methods to ensure success. But after all, such attackers are creatures of opportunities and seek to use whatever method, stay more the opportunity to deceive the victim to click a connection, following a malicious instruction, doing something they would not do if they did not pressure to fix a perceived problem of a kind. And so it is with this latest campaign that uses a combination of warnings for the Copyright Strike’s YouTube Copyright and the availability of tools to bypass the input restrictions.
A March 5 report by Leonid Bezvershenko, a security researcher with Kaspersky’s Global Research and Analysis Team, along with the help of Kaspersky Dmitry Pikush and Oleg Kupreev experts, detailed how the intersection of Windows Packet’s use to override, with notifications of Copyright Copyright Copyright Copyright Copyright
“We have recently discovered a massive malware campaign that infects users with a masked miner as a tool for bypassing blocks based on deep inspection of packages,” he said; “One of the infection channels was a YouTuber with 60,000 subscribers, who posted some videos with instructions for bypassing blocks, adding a link to a malicious archive in description.” Those videos on YouTube were determined to have exceeded 400,000 views before the link was removed and replaced with a “program does not work” message.
Copyright attack methodology on YouTube
It seems that in this campaign at least, the attackers appear to claim that they are the owners of the bypass of the entry restriction that a YouTuber has submitted in a video, and submit a copyright request accordingly. They then contact the YouTube account holder, warning them of the three strikes and you are out of copyright violation policy and offer a “solution” by “allowing” them to include a dismissal link to the tool they will offer. It is also noted that, in some cases, the attackers directly contacted the Creator on YouTube and, still posing as the vehicle developer, informed them of an update, and provided the link for involvement in their videos. Of course, these connections lead to malicious versions of the vehicle, those that actually discharge malware mine crypto in the country.
The identified campaign was limited to the distribution of a Cryptocurrency miner. However, as Bezvershenko ended, “Threat actors can start using this vector for more complex attacks, including data theft and dismissal of other malware.” The message for viewers on YouTube is clear: do not download software from connections to YouTube videos or video descriptions. I have reached YouTube for a statement.