Cybercriminals have pushed Facebook users to download a “computer” Clubhouse app that doesn’t exist. The application is actually a Trojan designed to inject malware into your computer. The popular new invitation-only chat app is only available on the iPhone, but global interest in the platform has grown, with users claiming Android and probably PC versions.
On TechCrunch, the malicious campaign used ads and Facebook pages to direct users of the platform to a number of fake Clubhouse websites. These sites, hosted in Russia, asked visitors to download the application, which promised to be only the latest version of the product: “We tried to make the experience as smooth as possible. You can check now! One is proclaimed.
However, once downloaded, the application will start signaling to a command and control (C&C) server. In cyber attacks, C&C is usually the server that informs malware about what to do after infecting a system. Testing the application by malware analysis of the apparent VMRay sandbox he showed thatIn one case, it tried to infect a computer with ransomware.
Taking advantage of a new popular product to implement malware is a fairly classic cyber move – and given Clubhouse’s prominence right now, it’s no wonder this is happening. In fact, researchers recently discovered another fake Clubhouse app. Lukas Stefanko from the security company ESET disclosure how another fictitious “Android version” of the app acted as a front for criminals who want to steal users ’login credentials from other services.
Fortunately, this latest campaign doesn’t seem to have been too popular, as TechCrunch reports that the Facebook pages associated with the fake app had only a handful of appreciations.
G / O Media may receive a commission
It’s an interesting little incident, though it can be difficult to learn more about this difficult campaign, as the sites hosting the fake app have apparently disappeared. Removing sites appears to have disabled malware. Facebook also removed ads associated with the campaign.