07 December 2023
DarkCloud Infostealer Being Distributed via Spam Emails
According to a report dated May 23, 2023, it was discovered that DarkCloud malware was distributed via spam. This malware steals credentials of accounts registered on infected systems.
The attack uses emails containing an attachment that, when executed, installs DarkCloud and ClipBanker on the system. ClipBanker replaces the crypto-currency wallet addresses copied by the user with the attacker's address, resulting in the theft of funds. DarkCloud, on the other hand, steals account credentials stored on web browsers, FTP clients and email clients.
Read more about it : here