2nd Edition

Tracking the trends and news for IT and IT Security

Paul

Vidar, nJRAT re-emerge as prominent malware threats in January

Vidar, nJRAT re-emerge as prominent malware threats in January
Real Time India – Devika Soman
The veteran Qbot or Qakbot banking trojan, the Lokibot commodity infostealer, and the AgentTesla remote access trojan (RAT) were the most prevalent malwares observed during January 2023, according to the latest monthly Global threat index from Check Point, but the first few weeks of the year also saw the return of the Vidar infostealer and njRAT malware following a number of new campaigns.

The re-entry of Vidar into the top 10 follows a marked increase in instances of so-called brandjacking observed in Check Pointâs telemetry. In one observed campaign, Vidar was spread via fake domains that seemed to be associated with AnyDesk, a remote desktop application.

The malware operators used URL jacking for various applications to redirect people to a single IP address that seemed to be the official AnyDesk website, but was in fact a malicious domain hosting Vidar. If installed, the malware masquerades as a legit installer, but steals data in the background.
Link: https://www.realtimeindia.in/vidar-njrat-re-emerge-as-prominent-malware-threats-in-january/

Categories:

Tags: