Watch Out! Ducktail's Malware Circulating On Internet Monitoring Your Facebook Account
JAKARTA - In an ongoing series of cyberattacks, Facebook users are being targeted by a new version of Ducktail malware that originally appeared last July. The first implementation was specifically aimed at Facebook Business accounts, but has recently become a broader danger to almost all accounts.
The latest version of Ducktail collects any and all of the Facebook data available on an infected computer. If it is a business account, a payment method can be found, which of course could harm user money. Additionally, Facebook Business data may include information and billing cycles, which can be used to help disguise unauthorized purchases.
Ducktail's in-depth account was shared by Bleeping Computer. The first version relies on LinkedIn's campaign, with hackers posing as marketing professionals and human resources to deliver PHP malware under the guise of useful information.
The latest Ducktail malware is favored on file sharing networks that host cracked software, games, adult videos, and anything that is banned.
This is likely the reason for the wider malware coverage, which has moved beyond its Facebook Business account to collect browser data, cryptocurrency wallets, and any personal Facebook account data that might be useful, including name, contact email, phone number, and more.
Users themselves cannot detect PHP malware on their disk drives, although it is a human readable code because it is compressed and stored in Base64, then expanded in memory before running.
User computers may have many useful PHP scripts, so deleting all PHPs can be a hasty decision. Instead, users will have to wait for the latest update for their antiviral software to detect and clean up these malicious variants.
As usual, the best way to protect ourselves from cybersecurity attacks is to avoid risky behavior. That means you have to be more careful when downloading files from the internet. If something looks too good to come true, it might be a trick to get users to install malware on their computers. Stay alert to keep our accounts, data and money safe.