MailChimp compromised – abused to deliver Gootkit Banking malware

One of the most trusted and widely used email distribution service MailChimp has been compromised. It is a widely used platform which is used to forward bulletins, newsletters, invoices and order confirmations. According to the security researchers, this issue has been going on for months beginning from December 2017.

Its mail distribution services have been used for Malware distribution including the infections like the Gootkit Banking Malware.

Spam emails forwarded through the MailChimp network are a big issue because they are able to pass the authentication checks. In addition to this, the email providers routinely use MailChimp for email distribution. Taking both these factors together, it becomes more likely that spam emails will reach the recipient’s inbox.

The Cybercriminals are using the MailChimp network to forward fake invoices and infected emails. This vulnerability is compromising the user security and still remains a major issue for MailChimp to resolve. There has been a case when the “Red Bull Records” MailChimp account was compromised and their database was abused to forward Apple-themed pushing emails. During the past few months there has been many similar instances to this.

The infosec guru Kevin Beaumont has complained that the Mailchimp network is used for the distribution for the distribution of Gootkit Banking malware from December 2017. Beaumont stated in a twitter update that if Mailchimp fails to get the Gootkit banking malware delivery under control then he is going to advise all business to block all MailChimp email delivery. He also stated that we will illustrate people about how to put this into practice.

In response to all these major queries, MailChimp acknowledged the issue and assured that unspecified security initiatives would address the issue. MailChimp has also advised the users to lock down their account by implementing two-factor authentications.

Lately, a popular IT website, The Register has contacted MailChimp and MailChimp has acknowledged issue.

As a user, it is important for you to take adequate steps to prevent your system from malware infections such as the Gootkit Banking Malware. Here are some free malware protection tips which will help you to prevent your system from such infections:

1. Keeping the Operating System Updated- In order to remain protected and avoid such infections, it is recommended to keep your Operating System updated by enabling the automatic update on your system. The systems with outdated or older versions of Operating System become an easy target for the attackers.
2. Resist clicking on spam emails – One of the major techniques used for malware distribution is forwarding spam emails to the user. The system gets infected as soon as the user clicks on the attachment. These mails appear to be genuine, so be aware and resist falling for these tricks.
3. Keep an eye on third party installations- It is quite important that you take due care while installing any third party applications for they are major source of such infections. Such malware programs come bundled with the free applications thereby requiring the user to remain cautious.
4. Regular periodical backup- In order to keep your data and files safe, it is recommended to take regular back up of all your data and files either on an external drive or cloud.
5. Use Anti-Virus Protection- We strongly recommend the use of antivirus protection/internet security in your PC like 360 Total Security and Sophos so that it remains safe.
6. Enable the Ad Blocker/Popup Blocker in your browser- Enabling the popup blocker/ ad blocker in your chosen browser will help you to stay protected from annoying adware.

Hits: 72