Hackers trying to steal users’ data with fake OnlyFans content, lure them into installing malware | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker

By Divyanshi Sharma: India has over 600 million smartphone users and with the rising cases of scams and cybercrimes across the country, anybody who owns a smartphone might be at risk of getting affected if they aren’t careful. Your safety, at times, is in your own hands while browsing the internet, and you should be extremely cautious while downloading or installing something on your device, particularly when it has been sent through an unverified source. As per a shocking new report, hackers are trying to steal data from users’ phones by circulating fake OnlyFans content.

Hackers using fake OnlyFans content to steal data

According to a report by IANS, hackers are trying to distribute fake OnlyFans content as well as adult lures in order to direct the user towards installing DcRAT, a remote access trojan that will enable the hacker to control your device from a distance. These DcRATs are being installed on the victims’ devices through fake OnlyFans content to steal their data and credentials, the IANS report states. The DcRAT Trojan, as per IANS, is ‘capable of keylogging, webcam monitoring, file manipulation, and remote access, as well as stealing web browser credentials and cookies and stealing Discord tokens’.

For the unaware, OnlyFans is a content subscription service, used by online users to sell as well as purchase original content of other users. The platform was created in 2016 and allows users to pay for content from other creators such as private videos, images, etc.

As per the IANS report originally attributed to BleepingComputer, the new campaign has been in action since January 2023 and aims to spread ZIP files that have a VBScript loader. The unsuspecting victim is tricked into manually executing the program, thinking that they will get access to OnlyFans premium content.

Even though the chain of infection is not yet known, the IANS report states that it can come from ‘malicious forum posts, instant messages, malvertising, or even black SEO sites ranking high in specific search terms’.

How to stay safe from malware

There are a couple of things you can keep in mind in order to mark yourself safe from such malware. The first thing to remember is avoiding clicking on or opening links or attachments sent by people you don’t know. At times, all it takes is a click to install a malware on your device. Additionally, check your devices for regular updates and keep updating them. Many security features are a part of such updates provided by companies. Also, purchasing a legitimate security protection program might prove to be helpful in case you download things from the internet frequently. And last but not the least, beware of whom you choose to interact with online. Refrain from trusting strangers and never give out any credentials to unknown people.


Click Here For The Original Story From This Source.

National Cyber Security