Skip to main content

New YTStealer Malware Aims to Hijack Accounts of YouTube Content Creators - The Hacker News

Cybersecurity researchers have documented a new information-stealing malware that targets YouTube content creators by plundering their authentication cookies.

Dubbed “YTStealer” by Intezer, the malicious tool is likely believed to be sold as a service on the dark web, with it distributed using fake installers that also drop RedLine Stealer and Vidar.

“What sets YTStealer aside from other stealers sold on the dark web market is that it is solely focused on harvesting credentials for one single service instead of grabbing everything it can get ahold of,” security researcher Joakim Kennedy said in a report shared with The Hacker News.

The malware’s modus operandi, however, mirrors its counterparts in that it extracts the cookie information from the web browser’s database files in the user’s profile folder. The reasoning given behind targeting content creators is that it uses one of the installed browsers on the infected machine to gather YouTube channel information.

It achieves this by launching the browser in headless mode and adding the cookie to the data store, followed by using a web automation tool called Rod to navigate to the user’s YouTube Studio page, which enables content creators to “manage your presence, grow your channel, interact with your audience, and make money all in one place.”

From there, the malware captures information about the user’s channels, including the name, the number of subscribers, and its creation date, alongside checking if it’s monetized, an official artist channel, and if the name has been verified, all of which is exfiltrated to a remote server carrying the domain name “youbot[.]solutions.”

Another notable aspect of YTStealer is its use of the open-source Chacal “anti-VM framework” in an attempt to thwart debugging and memory analysis.

Further analysis of the domain has revealed that it was registered on December 12, 2021, and that it’s possibly connected to a software company of the same name that’s located in the U.S. state of New Mexico and claims to provide “unique solutions for getting and monetizing targeted traffic.”

CyberSecurity

That said, open-source intelligence gathered by Intezer has also linked the logo of the supposed company to a user account on an Iranian video-sharing service called Aparat.

A majority of the dropper payloads delivering YTStealer together with RedLine Stealer are packaged under the guise of installers for legitimate video editing software such as Adobe Premiere Pro, Filmora, and HitFilm Express; audio tools like Ableton Live 11 and FL Studio; game mods for Counter-Strike: Global Offensive and Call of Duty; and cracked versions of security products.

“YTStealer doesn’t discriminate about what credentials it steals,” Kennedy said. “On the dark web, the ‘quality’ of stolen account credentials influences the asking price, so access to more influential YouTube channels would command higher prices.”

Labels:

Comments

Post a Comment

Popular posts from this blog

Authenticity Sells: Inside Beauty Brands’ Ongoing Digital Marketing Battle – BeautyMatter

Life without social media apps would be unimaginable today for most. Before Instagram, which launched in 2010, and TikTok, which debuted in 2016, there were apps such as Myspace and MSN (Windows Live Messenger) that seemed to be used solely by younger generations, predominantly for instant messaging. Now those days are gone, with these apps only ever mentioned in relation to what they once were. Even Facebook, which was arguably the breakthrough platform for how we use social media today, began to see a decline in everyday users at the end of 2021. As apps such as Instagram, Tiktok, Twitter, and Snapchat are named Adobe’s top social media sites to be using in 2022, the online world is being utilized for more than its original purpose of keeping up with friends, with the global social media advertising market predicted to be worth $262.62 billion by 2028 . Despite this, several consumers admit to being tired of advertisements across social media. 64% say that they’re likely to stop
Post a Comment
Read more

RobinHood Tried And Failed. Entrepreneurs, Build A Simpler Investing Platform For Millennials And Gen Z – Forbes

A young Millennial or Gen Z using her smartphone to check on her investments. getty When you talk to Millennials and Gen Z adults about investing, their answers, and confidence, are all over the place. This article here, Bit Coin there, throw in some meme stocks via social media and maybe add Robinhood to the conversation mix. That is not the answer. Robinhood announced another 23% layoff of employees yesterday; that comes on top of a 9% layoff last quarter. What was supposed to be the great savior of investing for the next generation of investors is failing. Why? Well, Millennials and Gen Z are challenging populations when it comes to investing. Millennials and Gen Z for all their savviness about technology, still are not confident or knowledgeable about investing. According to a Yahoo Money article that referred to a Pew Research study, only 37% of millennials feel knowledgeable about their investments. According to a March 2021 survey by CreditCards.com , Gen Z investors we
Post a Comment
Read more

Affiliate Program Trends 5 Things to Know Right Now – The European Business Review

Affiliate marketing is a popular promotion strategy used by many companies. Affiliate marketing is a popular promotion strategy that many companies use. Affiliate marketing spending in the US alone will reach $ 8.2 billion by 2022, according to data provided by Statista . And if you compare with the data 10 years ago, this is three times more. It can be extremely effective. However, this requires offering users something new and interesting. Therefore, we will tell you about the trends in affiliate marketing that will allow you to stand out from the competition in 2020. https://unsplash.com/photos/7KsyY-Ed7B8 TOP 5 Affiliate Marketing Trends in 2022 Voice search In 2020, experts predict an increase in the use of queries without screen interaction by up to   30% . The share of voice searches will increase. Given this circumstance, an affiliate marketing strategy should also include appropriate SEO optimization activities . It is worth adding longer and more specific queries.
Post a Comment
Read more