Infostealer malware infections are primarily driven by user behavior, such as downloading pirated software and ignoring security warnings, rather than software vulnerabilities. The study highlights how common tactics like fake ads, cracked software, and game mods facilitate widespread infections across the globe. #Aurora #CybercrimePlatforms
Keypoints
- User behaviors like trusting search results and disabling protections are major infection vectors.
- Cracked software accounted for 28.3% of the malware infections, often via shared links on file-sharing sites.
- Game cheats and mods for popular titles were involved in 7.4% of infections, often shared through YouTube or forums.
- Malicious Google Ads promoted fake download sites such as java-gapp.space to trick users into installing malware.
- The study used GPT-4o-mini to analyze screenshots, achieving high accuracy in identifying malicious files and URLs.