In a recent cyber attack, a popular website VSDC that provides free audio & video editing and conversion software had been hijacked by malicious programmers to insert different malware strains.
The miscreants changed the download links for the software offered by VSDC, to download links that commenced downloads of malware strains from attacker controlled & operated servers. Upon downloading from these swapped links, the users ended up downloading theft Trojan or Info-stealer, remote access trojan (RAT) and a key-logger program.
The attack was carried out in three stages. The first attack commenced on June 18 2018 when the free video software download link was replaced with third party download links. On July 2 2018 (second instance) and July 6 2018 (third instance), the attacks were carried out and original links were again replaced with third party download links.
The first and third attack caused large scale damage and affected many unsuspecting users in comparison to the second attack. Users who downloaded the video editing software offered by VSDC on these days ended up downloading a JavaScript file instead of the original video editing software executable file.
This JavaScript file was disguised as a Video installer file. On executing the program, the users unknowingly installed below mentioned malware strains in the systems:
The VSDC team later admitted to being hacked. They also informed the users that they had taken appropriate steps to prevent any future problems. They mentioned the steps that they have taken to remedy the vulnerabilities.
The VSDC Hijack alerted the VSDC team to be proactive regarding the security of their domain. Users who downloaded the VSDC software on the aforementioned dates can possibly the victims of this VSDC hijack. They are advised to immediately run an anti-virus scan on their systems to get rid of the malware strains.
Hits: 252
Subscribe to our newsletter today to receive updates on the Latest News and Threats.
Want to stay informed about the latest threats & malware? Sign up for our newsletter & learn how to get rid of all types of threats from your computer.