Why Is an Australian Footballer Collecting My Passwords?


Unit 42 researchers have observed threat actors using malicious JavaScript samples to steal sensitive information by abusing popular survey sites, low-quality hosting and web chat APIs.

In some campaigns, attackers created chatbots that they registered to someone noteworthy such as an Australian footballer. Other malware campaigns they saw included both web skimmers injected into compromised sites and traditional phishing sites. In this article, Trend Micro researchers describe some of the tactics used by malicious JavaScript to steal information through several case studies.

Read more…
Source: Trend Micro