Cybercriminals are leveraging TikTok videos disguised as legitimate activation guides to spread the Aura Stealer malware and steal sensitive information. This campaign uses social engineering and PowerShell commands to infect computers and compromise user credentials. #AuraStealer #PowerShell #TikTokMalware
Keypoints
- Cybercriminals create TikTok videos that appear to instruct users on product activation.
- The videos prompt users to run malicious PowerShell commands as administrators.
- Executing these commands downloads the Aura Stealer info-stealing malware from remote servers.
- The malware collects credentials, cookies, and cryptocurrency wallets from infected systems.
- Users are advised to avoid copying and executing commands from untrusted sources to prevent infection.