Hackers have Introduced a Malware Page under the Guise of Microsoft Support

The Microsoft team was recently alerted about an intricate crypto stealing scheme that was created by a team of black hat hackers. The heist is facilitated with a webpage that looks like Microsoft DirectX 12 download page. To make a distinction about the page authenticity is quite difficult even for the trained professionals. The page is loaded with elements like contact form, privacy policy, disclaimer, and even DMCA certification.

For most users doubting the page source or validity is out of the question. The attackers have paid attention to making the presentation as close to the real product as possible. This scam page is used to launch a hack attack on the database available on a computer. It is used to spread the malware rather than serving its original purpose. The users who are trading in cryptocurrencies are the biggest target of this malware, and in most cases, it can also pass the antivirus security checks.

How the Fake Microsoft Malware Page Steals Cryptocurrencies from Unsuspecting Users

When the users visit the page, they would be redirected to a web directory where they can download 32-bits or 64-bits versions of the malware. When unsuspecting victims try to install the downloaded malware, it will steal the passwords and digital wallet contents. The main purpose of this type of malware is to steal information from the victims. The malware look for cookies, data files, and browsing cache from the installed applications on the system. 

In many cases, the malware can also take a screenshot of the victim’s desktop at the discretion of the hackers. This virus was first uncovered by cybersecurity executive Oliver Hough. When the malware is done stealing the necessary information, it seals the data into a zip file and sends it to attackers without the knowledge of the victim. The range of threats is extended to digital wallets that are compatible with Monero, Coinomi, Electrum, BTCP Electrum, Ledger Live, Atomic, MultiBit HD, Jaxx, Exodus, and other Window software compliant pockets.

The most dangerous and concerning part about this type of cybersecurity threat is that it is built to dodge the experts. It is very difficult for an average user to identify such malware. The best thing to do is to rely solely on authentic Microsoft services rather than looking for a cheap alternative. If any person is selling the same service for a lesser amount or for free, it could be infected with malware.

The cryptocurrency holders can switch to cold storage wallets like Trezor, Ledger, or CoinKite, etc. These cold storage wallets allow users to keep their crypto reserves away from the grid and help them make transactions securely. It is also a good idea to invest in a good anti-virus program that blocks these types of malicious programs before they open in a browser or had a chance to display the infected website.