According to Kaspersky, cybercriminals are targeting YouTubers with blackmail and threats to spread crypto-mining malware. They exploit copyright systems to promote malicious software.
Cybercriminal Methods
The criminals exploit YouTube's copyright strike system to coerce creators into embedding malicious file links in video descriptions. The malware, called SilentCryptoMiner, secretly mines cryptocurrencies like Ethereum, Monero, and Ravencoin using victims' devices. The software operates stealthily to remain undetected, masquerading as useful tools shared by influencers.
Impact on Influencers
Hackers escalate their tactics by falsely accusing YouTubers of copyright violations, coercing them to distribute malware. A YouTuber with 60,000 subscribers unknowingly shared a virus link, but later removed it and warned viewers. Many influencers, fearing channel loss, succumb to such blackmail.
Expert Warnings
Experts warn that these tactics could extend to other platforms like Telegram, where influencers engage with communities. Users are advised to avoid downloading software from unverified sources, as seemingly helpful tools may harbor threats. Kaspersky also uncovered a threat called SparkCat, a data-stealing Trojan on the App Store and Google Play that uses machine learning to steal sensitive data, including crypto wallet recovery phrases. Arkham has launched a feature to track influencer wallets, helping investors determine genuine token support.
As cyber threats evolve, users must remain vigilant and avoid unverified downloads. Staying informed about cybersecurity risks is crucial for protecting personal data.
