Malwarebytes Labs discovered a Bing ad disguised as a link to install NordVPN, which instead led to a remote access trojan named SecTopRAT. The researchers found that the trojan could control browser sessions and send system information to an attacker’s control server. The deceptive ad was reported to Microsoft and Dropbox, the latter of which has since removed the linked account. Despite this, the malvertising campaign may still be active under a different identity.
Hackers are selling counterfeit phones with crypto-stealing malware
Kaspersky has identified thousands of low-cost Android smartphones sold online that come with preinstalled malware programmed to steal cryptocurrency details. The devices are infected with
