Cybersecurity researchers have uncovered a malicious campaign using fake advertising to distribute Trojanized PDF editors containing the TamperedChef information stealer. The campaign involves fraudulent sites promoting seemingly harmless software that secretly downloads malware capable of stealing credentials and cookies, as well as acting as a backdoor for additional malicious activities. #TamperedChef #AppSuitePDFEditor
Keypoints
- The campaign uses malvertising to direct victims to fake PDF editor sites.
- When installed, the software covertly contacts external servers to download malicious components.
- The malware, TamperedChef, harvests sensitive data like credentials and cookies.
- It establishes persistence through Windows Registry modifications and scheduled tasks.
- The campaign lasted at least 56 days, maximizing download rates before malicious activation.
Read More: https://thehackernews.com/2025/08/tamperedchef-malware-disguised-as-fake.html