Practically 1 million Home windows units had been focused in latest months by a complicated “malvertising” marketing campaign that surreptitiously stole login credentials, cryptocurrency, and different delicate info from contaminated machines, Microsoft stated.
The marketing campaign started in December, when the attackers, who stay unknown, seeded web sites with hyperlinks that downloaded adverts from malicious servers. The hyperlinks led focused machines by a number of middleman websites till lastly arriving at repositories on Microsoft-owned GitHub, which hosted a raft of malicious information.
Chain of occasions
The malware was loaded in 4 levels, every of which acted as a constructing block for the subsequent. Early levels collected system info, presumably to tailor configurations for the later ones. Later ones disabled malware detection apps and related to command-and-control servers; affected units remained contaminated even after being rebooted.
