Be Careful, There Are Oscar Films Infiltrated By Malware
JAKARTA - It seems that cybercriminals never stop using popular topics to destabilize cybersecurity. After previously taking advantage of the Grammys and the issue of the Corona virus, this time Kaspersky detected the distribution of malware under the guise of popular films that were nominated for Oscar awards.
"To better understand how cybercriminals try to exploit public interest in well-known film works, Kaspersky researchers looked into the prevalence of fraud using this method," Kaspersky said in an official statement received by VOI, Tuesday, February 11.
As a result, there were more than 20 phishing websites and 925 malicious files detected impersonating a film that was nominated for an Academy Award (Oscar) this year. The findings suggest that those who enjoy watching the latest blockbusters should be more vigilant about threats in the form of phishing and malware.
For the longest time, backing up your data was the most effective method of safeguarding against encrypting ransomware. However, cybercriminals seem to have found a way around that. Continue reading: https://t.co/hNtLqDN7qI pic.twitter.com/euBbBHKq7i
- Kaspersky (@kaspersky) February 10, 2020
More than 20 phishing websites and Twitter accounts were also discovered offering users to watch nominated films for free. This phishing website collects user data and asks them to fulfill various conditions to get access to the desired movies.
These methods can vary from taking surveys and sharing personal details, to installing adware to asking for credit card details. Furthermore, of course, the user does not get any content, but the cyber criminals will profit from accessing the data, and the credit card that the user provides.
"Cybercriminals also set up a Twitter account, through which they distribute links in content," added Kaspersky.
Do not stop there, they also share malicious files that spread through different channels. This method, no doubt still brings success for them to promote malware to users through that file.
Kaspersky researchers investigated the malicious activity under the name of the film's nominees during the first four weeks after its premiere. The Joker film occupies the first position among the many film names used. As the most popular film among cybercriminals.
Meanwhile, Kaspersky also found 304 malicious files, namely "Gothan Villain". Followed by the film "1917" which ranks second with 215 malicious files. Meanwhile, in third place, "The Irishman" with 179 malicious files. For the nomination of the Korean film "Parasite" which became "Best Picture" at the Oscars, it is known that it has no harmful malware activity.
The availability of movies on streaming platforms also makes it possible to influence users to search for illegal copies on the web. This result refers to comparing the malicious activity after the initial limited release in theaters with the actual release on the Netflix platform.
"Cybercriminals will not be tied to the premiere date of the film, because they will not distribute any content but malicious data. However, because these threats will always take advantage of the latest trends, they will depend on user demand and the availability of real files," said Anton Ivanov, Kaspersky malware analyst.
For information, the spread of malware on illegal film sites is indeed rampant, therefore the Ministry of Communication and Information Technology (KOMINFO) also urges Indonesians to watch movies through legal channels such as Netflix and film streaming platforms with certain security and licenses.
For this reason, Kaspersky provides some tips so that you can avoid cyber harassment not only through Oscar-nominated films but in the form of any files stored with malware, here are the tips:
1. Do not be tempted by pirated movies on the internet
If anyone provides movies or sites containing streaming movies. Please pay attention to the official release date of the film in theaters, streaming services, TV, DVD, or other sources in advance.
2. Do not just click on the link
With the vast world of the internet, users can surf freely. However, who would have thought that if you are busy surfing, you find an interesting link, but from a suspicious source, such as one that promises the appearance of the latest film. It is suggested in advance that you can check the release date of the film in theaters and keep track of it.
3. Look at the downloaded file extension.
If you are going to download a video file from a source that is considered trusted and legitimate, it must have the extension .avi, .mkv, or .mp4 among other video formats, and again, not in .exe.
4. Check the authenticity of the website.
Do not visit websites that allow viewing of movies until you are sure that they are legitimate and start with 'https'. Confirm that the website is authentic, by double checking the URL format or spelling of the company name, reading reviews of the site and checking the data carefully.