July 15, 2024 at 10:16AM
Cybercriminals are using Facebook business pages and ads to promote fake Windows themes, pirated games, and software, infecting users with the SYS01 malware. They exploit hijacked or newly-created pages to reach users, stealing personal information and Facebook cookies. The malware targets browsers, cryptocurrency wallets, and Facebook account data, posing a significant threat.
Based on the meeting notes, the key takeaways are:
1. Cybercriminals are using Facebook business pages and advertisements to promote fake Windows themes and pirated games and software that infect unsuspecting users with the SYS01 password-stealing malware.
2. Trustwave researchers observed that the threat actors also promote fake downloads for pirated games and software, Sora AI, 3D image creator, and One Click Active.
3. The threat actors take out thousands of ads for each campaign, using newly created Facebook business pages or hijacking existing ones to target a wider audience.
4. The malware primarily steals browser cookies, credentials, browser history, cryptocurrency wallets, and Facebook account information, which is temporarily stored on the infected device before being sent to the attackers.
5. The malvertising campaign is not limited to Facebook, as similar profiles have been set up on LinkedIn and YouTube, indicating the broader threat landscape in social media.
6. The SYS01 malware has shifted its delivery method to target a wider audience, transitioning from adult-themed clickbaits and game-related ads to more general audience-focused themes and AI-based software tools advertisements.
7. Other security organizations like Bitdefender have also reported similar incidents of threat actors using Facebook pages to push information-stealing malware, highlighting the pervasive nature of this type of cyber threat.
These takeaways indicate the growing threat of cybercriminals using social media platforms like Facebook to spread malware and steal sensitive information. It underscores the importance of maintaining awareness and vigilance while using social media to mitigate the risk of falling victim to such malvertising campaigns.