Artificial intelligence (AI) makes life easier not only for us but also for cybercriminals.
This allows them to create sophisticated campaigns to deceive people, something that would normally take months. Security researchers have discovered a new information-stealing malware disguised as video calling software. Hackers built entire websites and founded a company that uses AI to make malware appear harmless.
They even created social media accounts to further increase their legitimacy. People are tricked into installing malicious video calling software that steals their personal information. Data and cryptocurrencies.
Get security alerts, tips from experts – Sign up for Cart Newsletter – Cyber Guy Report here
Man doing Google search on laptop (Kurt “Cyber Guy” Knutson)
What you need to know about malware
Caddo Security Lab has discovered a new sophisticated scam targeting people. The scam involves a cryptocurrency thief called Realst, which has both macOS and Windows versions and has been active for about four months.
The hackers behind this malware went all out and set up fake company websites on platforms like Twitter and Medium, complete with AI-generated blogs, product content, and social media accounts. The name of the company they impersonated is “Meetio,” but in recent months they have been using different names, including Clusee, Cuesee, Meeten, and Meetone.
Fraud can be done in several different ways. Users are often contacted on Telegram by someone pretending to be a friend or acquaintance. Scammers will pitch you a business opportunity and ask you to schedule a phone call. In one case, the scammer even sent an investment presentation from the target's own company, making the scam feel more real and personal. Other victims have reported participating in Web3-related calls, downloading software, and having their cryptocurrency stolen.
Once contacted by scammers, victims are usually directed to the Meeten website where they download malicious software. However, even before the malware is installed, websites contain JavaScript that can steal cryptocurrencies stored in web browsers. This is a multi-step scam designed to deceive you.
Woman working on multiple computers (Kurt “Cyber Guy” Knutson)
4.3 million Americans fall victim to massive health savings account data breach
How malware works
Once victims are sent to the 'Meeten' website, they are given the option to download the software. The downloaded files include a program called 'fastquery', while other versions of the malware are presented as different file types (DMG) with multi-architecture settings.
When victims open the program, two error messages pop up. The first message says “Unable to connect to the server. Please reinstall or use a VPN” and has a “Continue” button. The malware uses macOS tools to prompt users for their passwords. This is a common technique for macOS malware.
What is artificial intelligence (AI)?
The malware then examines various files on the victim's computer to find sensitive information such as passwords and account details. Create a folder to store this stolen data and compress it into a zip file. This zip file is sent to the remote server along with some system data. The server receives information such as the build version of the system and the stolen data.
Once the data is sent, the malware deletes any temporary files it has created. This stealer is capable of harvesting sensitive information such as Telegram credentials, bank card details, and data from web browsers (Google Chrome, Opera, Brave, Microsoft Edge, Arc, CocCoc, Vivaldi, etc.). It can steal your saved passwords, cookies, browsing history, etc.
woman working on laptop (Kurt “Cyber Guy” Knutson)
Massive security flaw puts the most popular browser on MAC at risk
6 ways to protect yourself from sneaky macOS malware
1. Check the source before downloading software: Always make sure that you are downloading software from legitimate and trusted sources. Be careful when downloading anything from unsolicited messages or links sent via email, especially if it involves an urgent request or business opportunity.
The best way to protect yourself from malicious links that can install malware and access your personal information is to install antivirus software on all your devices. This protection also warns you about phishing emails and ransomware scams, keeping your personal information and digital assets safe. Check out our top selection of 2024 antivirus protection products for Windows, Mac, Android, and iOS devices..
2. Be careful of unexpected contact: If you receive a message on a platform like Telegram or social media from an unknown contact, especially one to schedule a call or discuss a business opportunity, verify the sender's identity before taking any action. Please. Cybercriminals often pose as friends or colleagues to gain trust.
3. Enable two-factor authentication (2FA): use 2FA This especially applies to accounts in sensitive services such as cryptocurrency wallets, banks, and messaging apps. This adds an extra layer of protection in case your credentials are compromised.
4. Please use a strong and unique password. To protect your Mac from malware, it's also important to use strong, unique passwords for all your accounts and devices. Do not reuse your password on different sites or services. a password manager Very helpful here. Generate and store complex passwords that are difficult for hackers to crack.
CLICK HERE TO GET FOX BUSINESS ON THE GO
It also keeps track of all your passwords in one place and automatically fills them in when you log into your account, so you don't have to remember them yourself. By reducing the number of passwords you need to remember, you are less likely to reuse them, reducing the risk of a security breach. Learn more about me Check out the best password managers of 2024, reviewed by experts.
5. Keep your software up to date: Make sure both macOS and all installed applications are up to date. Apple frequently releases security patches and updates that address vulnerabilities. Enabling automatic updates for macOS keeps your apps protected without having to manually check for updates. If you need further help, please see my article A guide to keeping all your devices up to date.
6. Invest in a personal data deletion service. Consider a service that scrubs personal information from public databases. This reduces the chance that your data will be used for phishing or other cyber-attacks after a breach, and reduces the likelihood that potential attackers will find you or contact you in the first place. Check out the data deletion services I recommend here.
Cart important points
AI is enabling fraudsters to launch malicious campaigns on a scale never seen before, and the situation is likely to get even worse as AI models continue to improve. This is why tools that can detect AI-generated content and help people protect themselves from these scams are important. In the meantime, use common sense, heed the red flags, and only install software from trusted platforms. For video calls, use well-known and trusted platforms like Zoom, FaceTime, Google Meet, or Webex. If someone sends you a random video call link, politely ask them to schedule a call using one of these trusted platforms instead.
CLICK HERE TO GET THE FOX NEWS APP
Should companies be doing more to help users detect and protect themselves from AI-powered fraud? Cyberguy.com/Contact
For more of my tech tips and security alerts, subscribe to my free CyberGuy Report newsletter using the link below. Cyberguy.com/Newsletter
Ask your cart a question or let us know your story you'd like us to feature
Follow Cart's Social Channels
Answers to CyberGuy frequently asked questions:
New from cart:
Copyright 2024 CyberGuy.com. Unauthorized reproduction is prohibited.
