‘Hidden Bee’ miner uses malvertising to lure victims

Researchers at Malwarebytes discovered a malware that targets a vulnerability in Flash Player. The attackers resort to malvertising in adult sites to lure victims, whom they suspect are from Asian countries based on the advertisements used, to the exploit kit landing page. Behind the supposedly online dating service is a malicious iframe that spreads the malware. The researchers call the attack as a “drive-by download.” They noticed something unusual from the existing exploitation framework they are monitoring” as referenced in late 2017 by Chinese security firm Qihoo360.” The criminals are using “encryption to package exploits on-the-fly.” A key is needed from the server to be able to decrypt and execute the malware.

View Full Story