Beware! Fake Meltdown and Spectre Patch Being Used for Spreading Malware

The recently discovered Meltdown and Spectre CPU vulnerabilities have sent the whole manufacture into a frenzy, and while they are currently being fixed through updates, the very solution is now proving to be some other major headache.

Commencement, it was the severe performance slowdown later on installing the security patch, and now, there are reports of fake Meltdown and Spectre patch beingness spread for phishing attacks.

According to a report, an SSL-enabled domain imitating the official website of Germany's Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik or BSI in short) is being used to do the dirty human activity.

The false website offers information about the Meltdown and Spectre vulnerabilities through various links that are supposed to direct users to resource banks where they tin get an in-depth grasp of the whole fiasco.

The fraudulent website likewise hosts a ZIP archive link titled 'Intel-AMD-SecurityPatch-eleven-01bsi.zip',which supposedly contains the official patch for the aforementioned vulnerabilities. However, the 'patch' file is nothing but a cleverly disguised malware bank, which does one matter and one thing just i.e. install an information-stealing malware called Smoke Leader. Security experts accept discovered that once a system is infected with the malware, it connects to various domains and sends user'south individual information stored on their PC to malicious parties in an encrypted form.

The German federal agency had earlier warned users about fake BSI emails being sent to users in the guise of officially distributed messages. In a printing release, BSI conspicuously said:

"In the context of the recently announced "Specter" and "Meltdown" vulnerabilities, the BSI is currently monitoring a SPAM wave with alleged security warnings from the BSI. The recipients are prompted to perform security updates that can exist retrieved using a link independent in the mail. The link leads to a fake website, which has similarity to the citizen website (world wide web.bsi-fuer-buerger.de) of the BSI. The download of the alleged update leads to a malware infection of the figurer or smartphone."

The agency advised users to delete all such emails, and in example they have clicked on a link mentioned in the false electronic mail and opened a webpage, they should not download any content from the webpage.

As of now, the reports of such veiled attacks for spreading the Smoke Leader malware have been limited to Germany, but nosotros propose users across the globe to refrain from downloading any patch which is not from an authorized source or appears sketchy.

Source: https://beebom.com/fake-meltdown-spectre-patch-spreading-malware/

Posted by: rodriguezdrecandlere.blogspot.com

Share this post