EDR platform ReasonLabs has found that 300,000 endpoints are infected with a new kind of global polymorphic malware campaign. This campaign targets Google Chrome and Microsoft Edge users, infecting their devices with Trojan malware and malicious extensions. Some of these extensions are still active in the Google Chrome Store. The report found the trojan malware steals private data and executes commands once it forcefully injects into the users’ endpoints. These occur through multiple malicious extensions to carry out search hijacks or form-fills. The malware, supposedly a RAT (remote access trojan), dates back to 2021. Since then, it has evolved continuously, targeting audiences and users consuming content on various websites and applications. In most cases, the installer and extensions barge past the anti-virus engines, despite having a strong detection protocol on Microsoft Edge and Google Chrome.
Latest News for the CISOs: Canadian CyberTech Startup Inscora Raises $2M in New Funding Round
Cybercriminals are targeting consumers in the “digisphere” with potent cyber threats. Kobi Kalif, CEO and co-founder of ReasonLabs, explained the latest developments’ seriousness. Kobi said, “Our research team remains committed to hunting these threats and providing our users with the tools, knowledge, and information to stay protected online. We alerted Google and Microsoft as soon as we became aware of the issue and they are taking the appropriate measures. We’ll continue to provide them with any new information we may find in the future.”
Today, ReasonLabs is revolutionizing cybersecurity for consumers with its cutting-edge AI-powered distributed EDR platform. Fortune 500 companies use the EDR platform powered by AI and machine learning.
Latest from Black HAT USA: Devo at Black Hat 2024: Introducing Data Orchestration and Open Data Analytics Cloud
