AhnLab Warns "Beware of Malware Infections Spread in IT Communities"

Published 27 Jul.2020 10:14(KST)

[Asia Economy Reporter Bu Aeri] AhnLab recently discovered cases of malware distribution on the file board of a well-known domestic IT community site and has issued a warning.

According to AhnLab on the 27th, the attacker posted a disguised post introducing development programs on the file board of a domestic IT community site used by software developers and other IT industry workers.

The attached file in the post was a compressed file containing a development utility program installation file that the attacker had tampered with by inserting malware, inducing community users to download it.

If users download and install the attached file from the post, they are immediately infected with malware.

This malware communicates with the 'C&C (Command & Control) server' used by the attacker to remotely control the malware after infection, performing malicious actions such as downloading additional malware and stealing user information, causing various damages.

In particular, since the downloaded program operates normally even after infection, users find it difficult to realize they have been infected.

Although the post has been deleted, similar methods may reappear, so caution is necessary. Currently, AhnLab's V3 product line detects this malware.

Hot Picks Today

"Not Everyone Can Afford This: Inside the World of the True Top 0.1% [Luxury World]"

Kim Donghyun, a researcher at AhnLab's analysis team, said, "This attack was cleverly carried out by tampering with installation files of development-related programs and uploading them to IT information-related topic boards," and urged, "When downloading software, always use the official website."

한글 기사 보기

This content was produced with the assistance of AI translation services.

AhnLab Warns "Beware of Malware Infections Spread in IT Communities"

Hot Picks Today

Today’s Briefing