Threat actors used search engine ads to impersonate makers of popular software and direct internet users to malicious websites

This week, the ESET research team has published a report describing a malware campaign that took aim at Chinese-speaking people in Southeast and East Asia. The campaign involved malicious advertisements that appeared in Google search and lead people to fake websites that mimicked the websites of popular applications such as Firefox, WhatsApp, Signal, Skype, and Telegram, but in addition to providing the legitimate software, also delivered a Remote Access Trojan called FatalRAT.

What kinds of dirty tricks was FatalRAT up to and how did it attempt to evade detection? Find out in the video and make sure to give the full report a read:

These aren’t the apps you’re looking for: fake installers targeting Southeast and East Asia

Connect with us on Facebook, Twitter, LinkedIn and Instagram.