This fourth dimension the drive has been re-designed to target Mozilla Firefox users alongside a banking trojan, called Zeus Panda, says Kafeine, a safety researcher at Proofpoint.
Interestingly, the attackers behind this novel drive are thence stupid that they forgot to modify the lift of the font, i.e. HoeflerText, due to which tin privy last easily spotted.
As I previously warned — Next fourth dimension when you lot accidentally soil upwards on a suspicious website alongside jumbled content prompting to update the Firefox or Chrome font pack yesteryear downloading a missing text font to read the article… Just don't download it. It's champaign a trap.
Just similar the previous one, the latest Firefox 'HoeflerText font wasn't constitute scam is too real convincing in addition to slow to autumn for.
The assail initiates alongside an warning message, which states that "The 'HoeflerText' font was non found," bespeak Firefox users to update their "Mozilla Font Pack."
Once clicked, it downloads a ZIP file (Mozilla_Font_v7.87.zip) on the victim’s system, containing a JavaScript file. Meanwhile, the concealment volition display a laid of instructions, bespeak victims to run the JS file inwards guild to install the missing "Mozilla Font Pack."
If the victims turned out to last thence stupid that they run the JS file themselves, every bit instructed, the programme volition download the malware payload (.exe) from a remote server in addition to thence runs it automatically, injecting the Zeus Panda banking Trojan into the infected systems.
Panda is an online banking trojan that was initially constitute to last targeting banks inwards Europe in addition to North America early on final twelvemonth in addition to thence started spreading itself to Brazil through at to the lowest degree 3 dissimilar exploit kits, including Angler, Nuclear, in addition to Neutrino.
Once it infects a system, the Zeus Panda banking trojan contacts its command in addition to command (C&C) server to ship the infected device information, including a listing of installed antivirus in addition to firewall products.
Panda focuses on stealing banking credentials from users, every bit good every bit those of bitcoin exchanges, payment bill of fare services in addition to online payments providers, prepaid cards, airline loyalty programs in addition to online betting accounts, to lift a few.
To protect yourself from such scams, e'er practise caution when downloading anything from the Internet onto your computers. Moreover, popular off along your antivirus up-to-date in addition to produce non ever autumn for scam bespeak you lot to update your Mozilla or Chrome font pack, every bit it already comes alongside everything you lot need.
Share This :
comment 0 Comments
more_vert