Vietnam-based hackers are reportedly using malicious advertising to distribute malware.

Vietnam-based hackers are reportedly using malicious advertising to distribute malware.

 The hackers have been active at least since 2019.

• The hackers are using social engineering tactics to trick users into clicking on fake ads, which then redirect them to sites hosting malware.
• Once victims click on those posts/links, a malicious ZIP file is downloaded to their computers.
• A browser window popup with a decoy website is then shown to the victim as the stealer deploys, executes, and gains persistence to steal cookies, accounts, crypto-wallets, and more.
• The malware being distributed includes:
  • keyloggers,
  • remote access,
  • trojans,
  • and crypto-jacking software.
• The group is believed to be using a number of different attack methods, such as:
  • spear-phishing,
  • unpatched vulnerability exploitation,
  • business email compromise, etc.
• Researchers have recommended users be careful when clicking on ads and use ad blockers to help prevent malware infections.

---