Beware of Fake Social Security Statement That Tricks Users to Install Malware

The tool’s legitimate status complicates detection by security solutions, while giving attackers capabilities to run scripts, execute commands, transfer files, and install additional malware without user awareness. Security experts recommend verifying email sources through independent channels, avoiding clicking on unexpected links, and maintaining updated anti-malware protection to prevent falling victim to this and similar campaigns. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. Despite these innocuous-sounding names, the files actually contain a legitimate remote access tool called ScreenConnect that gives attackers complete control over victims’ systems. With years of experience under his belt in Cyber Security, he is covering Cyber Security News, technology and other news. A sophisticated phishing campaign targeting Americans is currently making rounds via fake Social Security Administration (SSA) emails. Malwarebytes researchers identified a threat actor group dubbed “Molatori” behind this campaign, named after the domains they utilize to host the malicious ScreenConnect clients. Tushar is a Cyber security content editor with a passion for creating captivating and informative content. These convincingly crafted messages inform recipients that their Social Security Statement is available for download, encouraging them to click on an attached file. Additionally, they embed email content as images to prevent effective scanning by email security filters. The cybercriminals distribute their phishing emails from compromised WordPress sites, ensuring the sender domains appear legitimate. Once installed, ScreenConnect-a legitimate remote administration tool-provides attackers with comprehensive system access. After installation, the ScreenConnect client establishes a connection to command domains including atmolatori.icu, gomolatori.cyou, and several similar variations. The group appears primarily motivated by financial fraud, accessing banking details and personal identification information once they gain system access.

This Cyber News was published on cybersecuritynews.com. Publication date: Thu, 08 May 2025 03:00:01 +0000

Cyber News related to Beware of Fake Social Security Statement That Tricks Users to Install Malware

RustDoor malware targets macOS users by posing as a Visual Studio Update - A new malware called RustDoor is targeting macOS users. The malware has been undetected for 3 months, and poses as a Microsoft Visual studio Update. ADVERTISEMENT. The malware was discovered by Bitdefender. Bitdefender products identify the malware ...
1 year ago Ghacks.net

Types of Malware and How To Prevent Them - Malware is one of the biggest security threats to any type of technological device, and each type of malware uses unique tactics for successful invasions. Even if you've downloaded a VPN for internet browsing, our in-depth guide discusses the 14 ...
10 months ago Pandasecurity.com

How to Remove Malware + Viruses - Malware removal can seem daunting after your device is infected with a virus, but with a careful and rapid response, removing a virus or malware program can be easier than you think. We created a guide that explains exactly how to rid your Mac or PC ...
1 year ago Pandasecurity.com

Social Engineering: The Art of Human Hacking - Social engineering exploits this vulnerability by manipulating human psychology and emotions to gain unauthorized access to systems and data. Rather than directly breaking cyber defenses, social engineering tactics exploit human vulnerabilities - ...
1 year ago Offsec.com

Fake Browser Updates Targeting Mac Systems With Infostealer - A widely popular social engineering campaign previously only targeting Windows systems has expanded and is now using fake browser updates to distribute Atomic Stealer, a dangerous information stealer, to macOS systems. Experts say this could be the ...
1 year ago Darkreading.com

PixPirate: The Brazilian financial malware you can't see, part one - The constantly mutating PixPirate malware has taken that strategy to a new extreme. PixPirate is a sophisticated financial remote access trojan malware that heavily utilizes anti-research techniques. Within IBM Trusteer, we saw several different ...
1 year ago Securityintelligence.com

Hacker Conversations: Stephanie 'Snow' Carruthers, Chief People Hacker at IBM X-Force Red - Social engineering is effectively hacking human thought processes. Social engineering is a major factor in the overall process but is not directly part of repurposing electronic systems. A social engineer is usually classified as a hacker, and is ...
1 year ago Securityweek.com

Stemming the Tide: Solving the Challenge of Password Reuse and Password-Stealing Malware - Password stealing malware is again rising with several attacks making the news cycle in recent months. A new password-stealing malware named Ov3r Stealer was discovered on Facebook Ads, spreading by way of fake job opportunities. Further analysis ...
11 months ago Cybersecurity-insiders.com