A refined malware script, ViperSoftX, is targeting primarily South Korean users via illicit software and torrent downloads. Distributed via deceptive software in application packages, the malware establishes connections to servers and downloads further malicious components. The Arabic comments within the malware’s code suggest it originates from Arabic-speaking actors. Its evasion techniques include bypassing Windows Defender. Protection measures include using legitimate software and updated antivirus solutions.
Fake PDFCandy Websites Spread Malware via Google Ads
CloudSEK has discovered a recent malware campaign where hackers are impersonating PDFCandy.com to spread ArechClient2 malware. The malware steals sensitive user information like usernames and
