Threat actors are using malware-infected Windows and macOS machines to deliver a proxy server application and use them as exit nodes to reroute requests.
The proxy software, written in the Go programming language, can target both Windows and MacOS.
Many malware families have been observed delivering the proxy to end-users seeking for cracked software and games.
The rise of malware delivering proxy applications as a lucrative investment, facilitated by affiliate programs, highlights the cunning nature of adversaries’ tactics.
Furthermore, the installation of the proxy software is often accompanied by the deployment of additional malware or adware elements.
This report details how sophisticated adversaries are in developing new ways to evade detection and gain profit from infecting and administering infected machines with proxy software.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply