Popular communicating software Skype from Microsoft was condemned due to its advertising which commuted ransomware in users’ computers. This is the first time when Skype was inculpated of delivering malicious programs in users’ computers.
According to sources, on the first screen, Skype was coercing a malicious and sham advertisement that impersonating to be a necessary update of Flash Web Plug-in. This advt. led to an HTML application downloaded in the system, which looked legitimate and when opened, it would download a complete package that locks your computer and encrypts its files for a bulky ransom.
Image Source: blog.shi.com
The ‘Fake Flash’ advertisement is developed to target only the Windows computers that pushes a download, which when clicked to open, would trigger a foggy JavaScript. The script runs a new command that deletes the application, user had just opened and runs a PowerShell command, which downloads a JSE (Java Encoded Script) from a no longer existing domain. The complete process helps the malicious file to be detected by antivirus tools.
See Also: Top 5 Ransomware Protection Tools
The same type of malware attack was experienced by IBM’s X-Force, which is a sharing site of threat intelligence. However, the package was downloaded from a different domain but the malware matches the pattern of the web address used in the same attack.
See Also: Top 5 Tips to Fight Against Ransomware Havoc
How to Be Secured:
Awareness is the key to security. To avoid getting into such unfavorable situations, you need to understand that every prompt for download is not legit. Whenever you see a prompt to download an update for a software, regardless how legitimate it appears to be, always prefer to download such updates from their official websites. Keep your antimalware up to date and run a security scan every once in a while. Awareness is the key to security.
Subscribe Now & Never Miss The Latest Tech Updates!