New YouTube Bot Spotted Stealing Sensitive User Information
A new malicious YouTube bot was uncovered.
This YouTube bot can be leveraged to artificially boost content on YouTube by viewing, liking, and commenting on videos and subscribing to channels.
The bot is also capable of stealing victims' sensitive information such as cookies, AutoFill, Login data, and passwords.
The bot receives commands from the Command & Control (C2) server and can download and execute additional malicious files on the victim's machine. The bot uses Windows Scheduled Tasks to establish persistence on the victims' machine and uses a Mutex that starts with "sm" to ensure the malware is only running once.
Featured Resources
blog
Get Ready to Get MCPwned — Cymulate’s Elite CTF on Securing the Model Context Protocol
When AI agents meet the real world, every protocol becomes a potential attack vector. That’s the big idea behind MCPwned,
CUSTOMERS
How a Retail Organization Became 12x Faster at Assessing Security Controls with Cymulate
Challenge This retail organization has a presence in 34 countries and over 5,800 stores. Its security team uses various controls
blog
Ransomware Detection Techniques: A Smarter Approach to Staying Ahead of Attacks
Ransomware attacks continue to rise in both volume and sophistication, crippling organizations, exfiltrating sensitive data and costing billions annually in