Cybercriminals Use Webex Brand to Target Corporate Users

  /     /     /  
Publicated : 23/11/2024   Category : security


Cybercriminals Use Webex Brand to Target Corporate Users


The false advertisement has been left up for days, flying under the radar by managing to adhere to Google Ads policies.



Threat actors are targeting corporate users who are interested in downloading Webex — by buying ad space from Google and impersonating
Cisco
.
Webex, the digital communications giants Web conference software, has not itself been compromised, to be clear. The effort is a fairly straightforward malvertising campaign: When a user completes a Google search for the software, they are met with a seemingly real advertisement that is being used to distribute malware, specifically the BatLoader first-stage malware threat.
BatLoader
, which as its name suggests downloads additional payloads on a compromised computer, is skilled in evading detection and is part of the
infection chain
where it is used to perform the initial compromise.
The malicious, false advertisement adheres to Google Ads policy for display URLs, exploiting a loophole known as a tracking template that is being abused as a filtering and redirection mechanism. The threat actors appear to be interested in corporate users, using malware that may not be detected by an organizations traditional antivirus measures.
A more complete solution such as endpoint detection and response (EDR), coupled with an MDR service where human analysts review suspicious activities performed by the malware is a necessity,
stated researchers at Malwarebytes Labs
, who uncovered the campaign.
Google has been alerted regarding the false advertising incident.

Last News

▸ IoT Devices on Average Have 25 Vulnerabilities ◂
Discovered: 23/12/2024
Category: security

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security

▸ Debunking Machine Learning in Security. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Cybercriminals Use Webex Brand to Target Corporate Users