A recent cyber campaign aimed at approximately 1 million devices of both individuals and various organizations utilized a broad targeting strategy instead of focusing on specific entities. The malicious payloads were primarily hosted on Github, with additional use of platforms like Discord and Dropbox. The malware exfiltrated sensitive data from infected devices including browser files containing cookies, passwords, and histories, along with files stored on Microsoft's OneDrive. Microsoft identified potential financial data theft via cryptocurrency wallets and suspected distribution of unauthorized streaming content.
The campaign targeted nearly 1 million devices, with an indiscriminate approach indicating a broad and opportunistic strategy to catch anyone, rather than specific targets.
Microsoft suspects that the sites hosting malicious ads are streaming platforms offering unauthorized content, signaling a mix of data theft and unlawful distribution practices.
Collection
[
|
...
]