Online sellers are targeted in a new campaign to push the Vidar information-stealing malware, allowing threat actors to steal credentials for more damaging attacks.
The new campaign launched this week, with threat actors sending complaints to online store admins through email and website contact forms.
These emails pretend to be from a customer of an online store who had $550 deducted from their bank account after an alleged order did not properly go through.
BleepingComputer received one of these emails this week and, after researching the attack, has found it widespread with many submissions to VirusTotal over the past week.
![[correlate]](/data/avatars/s/79/79653.jpg?1556985072){kind=avatar}
