Cybercriminals hide under the name of meeting applications to distribute malware


Kaspersky experts conducted an investigation into the digital threats associated with meeting applications, whose use flourished under the current health conditions that imposed on individuals and companies social and physical distance and telework. The experts aimed at their investigations to make sure that users are safe and that their communication is comfortable and meaningful, but they found through the analyzes about 1,300 files that have names similar to a number of prominent meeting applications, such as Zoom, Webex and Slack, which provides others easy way for people to do business and learn from Through communication via video, audio and text. Fraudsters online do not hesitate to exploit this fact in an attempt to distribute many malicious programs that may constitute hiding under the guise of common applications dangerous threats.

Experts discovered among that large number of files 200 different threats, among them families of widespread software such as DealPly and DownloadSponsor, which are two sets of installers that display ads or download unwanted software modules for display ads. This software usually appears on the users ’devices as soon as it is downloaded from unofficial markets.

Advertising software is formed Threat to privacyAlthough it is not considered a type of malware, Kaspersky Security Solutions is able to detect and prevent DealPly and DownloadSponsor software.

Aside from unwanted advertising software, Kaspersky experts have in some cases found convincing threats in the form of lnk files, which are actually shortcuts to specific applications. The vast majority of these files have been identified as a malicious code called Win32.CVE-2010-2568, although it is still widespread and allows attackers to infect some computers with additional malware.

The Skype app is at the top of the meeting applications that criminals seek to use their name in their sabotage attempts to distribute digital threats, as Kaspersky experts found 120,000 different suspicious files using the name of this application. Unlike other application names, Skype is used to distribute many malware, especially Trojans, other than advertising software.

Dennis Barinov, Kaspersky’s digital security expert, explained that the figures do not indicate a significant increase in the number of attacks or the number of files being hidden under the guise of common meeting applications, noting that the numbers of these files are actually moderate, but he in turn confirmed that the issue related to Skype Quite different, explaining that the widespread popularity of this app has always made it a traditional target for digital subversive actors for years, and he said: “It is important for users to know that there are such threats, especially in light of the current landscape, where most of us work from home, so we have to make sure to make sure That what we use as A tool for communicating and conducting online meetings, we obtain it from an official source, and its settings are properly set, and it is free from dangerous vulnerabilities.

More tips on how to stay safe while communicating remotely can be found.


Please enter your comment!
Please enter your name here