Security Intelligence -
Squid Game Used as Lure for Malware Campaigns, Phishing Attacks
Digital attackers are using Netflix’s popular series “Squid Game” as a lure for their malware campaigns and phishing operations.
Two Trojan Downloaders Targeting Fans
Kaspersky uncovered dozens of different malicious files related to Squid Game between September and October 2021, reported PC Mag.
In one of those attack instances, a user came across an animated version of the first game depicted in Netflix’s series. What the user didn’t know is that the campaign downloaded a trojan in the background. Once launched, that threat stole the user’s data from their web browser and exfiltrated it to a server under the attackers’ control.
The attack operation also created a shortcut in one of the victim’s folders. This ensured that the trojan would launch every time the victim’s system started up.
Another attack discovered by the security firm arrived in the form of a mobile malware threat relying on unofficial app stores and other portals for distribution. It tantalized a user with the prospect of downloading an episode from Squid Game. In reality, the user downloaded a trojan onto their device.