Nearly 1 million Windows devices targeted in advanced “malvertising” spree
1 min read
Summary
A large-scale “malvertising” campaign led to around one million Windows devices being infected, with hackers stealing login credentials, crypto coins and other sensitive information, according to Microsoft.
The campaign, which has been active since December, saw attackers plant malicious links on popular websites that silently downloaded malware from Microsoft’s own GitHub service.
Once on a device, the malware downloaded in stages, with the early parts gathering device-specific information before disabling anti-malware software and connecting the compromised computer to a command-and-control server.
Microsoft has called the campaign “sophisticated” and noted that the malware is highly tailored and repeatable.
The company has published extensive technical details in the hope that sysadmins can better protect their users and networks.
