Hackers are disguising malware as a ChatGPT desktop app to deploy ransomware using a zero-day vulnerability, according to Microsoft. The threat actor Storm-2460 employs a modular backdoor called PipeMagic, targeting multiple sectors globally. #Storm-2460 #PipeMagic #ZeroDay #RansomExx
Keypoints
- Hackers use a fake ChatGPT application to deliver malware and ransomware payloads.
- Microsoft identified a zero-day vulnerability in Windows CFLS exploited by the threat group.
- PipeMagic is a sophisticated backdoor that enables remote access and information theft.
- Victims see only a blank screen when opening the malicious ChatGPT app, hiding the malware activity.
- Multiple ransomware strains, including RansomExx, have been linked to these cyberattack campaigns.
Read More: https://therecord.media/ransomware-gang-masking-pipemagic-backdoor