Exploit Kit Starts Pushing Malware Via Fake Adult Sites

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Spelevo exploit kit's operators have recently added a new infection vector as part of their attacks, attempting to social engineer potential targets into downloading and executing addition malware payloads from decoy adult sites.

This exploit kit was initially spotted by security researcher Kafeine back in early March 2019 and it has been used as a delivery platform for the infamous IceD and Dridex banking trojans as Cisco Talos found in June, and to drop Maze Ransomware payloads as researcher nao_sec discovered.

While normally exploit kits will only redirect victims to a landing page using a traffic direct system (TDS) and hit them with an exploit designed to abuse vulnerable apps on their computer, this time the attackers behind Spelevo EK decided to include a new social engineering tactic as a backup infection vector.
 
F

ForgottenSeer 823865

Adult sites are like every others, just pick a reputable one LOL.
And the well appreciated sites for malware writers to deliver their malware are wallpapers and others desktop customization sites which often requires to install the wallpaper/screensaver/theme.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top