Game-centric messaging platform discord Research suggests that it has become a favorite tool among cybercriminals.
NS New report Security company Sophos shows that Discord, which has grown rapidly in popularity in recent years, is regularly used for various types of hosting, distribution, and control. Malware..
In addition, this problem is getting worse week by week. In the last two months, Sophos has detected about 140 times more Discord malware threats than it did during the same period last year.
In the second quarter, the company discovered 17,000 unique malware URLs on Discord. Content delivery networkAt the time of writing, about 5,000 remain active. Most of these malware strains are classified as info stealers designed to steal account credentials and other personal information.
According to Sophos senior threat researcher Sean Gallagher, Discord is becoming an increasingly attractive tool for cybercriminals due to its extensive infrastructure and ever-larger customer base.
“Discord provides a persistent and highly available global distribution network for malware operators and a messaging system that allows these operators to adapt to malware command and control channels,” he explained.
“Discord’s vast user base also provides an ideal environment for stealing personal information and credentials through social engineering.”
Hackers often disguise malware as a tool to help players cheat in video games primarily aimed at young viewers such as Fortnite and Roblox. In another example, the victim may be offered the opportunity to try out a game that is still under development.
Sophos also discovered that old ransomware in the early 2000s was distributed on the platform as a type of malware that denies access to victims’ files without providing recovery.
In the report, Sophos praised Discord for its quick response to removal requests, but advised users to take some steps to protect them from potential scams on the platform.
The company advised Discord users to use multi-factor authentication to prevent account hijacking and keep their devices up-to-date. Antivirus service. As a side note, the company added that users should not download unlicensed software, no matter how reliable the source is.
“Any Discord user, regardless of the purpose of using the platform, does more than just pay attention to the threat of malicious content and let the Discord platform identify and delete suspicious files,” Gallagher said. Added.
“In addition, IT security teams should not consider online traffic. cloud A service that is essentially “safe” based on the credible nature or legitimacy of the service itself. Enemies can be hiding everywhere. “
Discord said he was asked to comment on the Sophos report and explain what measures are being taken to prevent the spread of malware. Pro It relies on a multi-layered approach.
“Platform security is our priority. Discord relies on a combination of proactive scans, such as antivirus scans, and reactive reports that detect malware and viruses on the service before they reach the user. We are also doing proactive work to find and remove the abused community. Discord for this purpose. If you notice any of these incidents or malicious persons, remove the content and We will take appropriate action against the participants, “explained the discord spokesperson.
“We value feedback from trusted sources like Sophos. That expertise can help us identify the malware and remove it so that it is no longer distributed on Discord.”
Discord is now an indispensable tool for hackers
Source link Discord is now an indispensable tool for hackers