Security News > 2024 > July > SYS01 info-stealer pushed via Facebook ads, LinkedIn and YouTube posts

SYS01 info-stealer pushed via Facebook ads, LinkedIn and YouTube posts
2024-07-16 10:11

Malicious Google ads are a well known threat, but malvertising can also be found on other popular online destinations such as Facebook, LinkedIn, and YouTube.

Case in point: an enduring campaign that aims to infect Facebook users with the SYS01 information stealer, which grabs everything the attackers need to carry on with it endlessly.

Its longevity is due to the continous evolution of tactics and ads used.

Currently, the malicious ads are mostly promoting Windows themes, Windows Taskbar themes, cracked games, a text-to-video genAI model, a quick way to "Unlock Genuine Licenses for Windows, Office, Photoshop in a Single Click!", and software to create 3D images.

Examples of the malicious Facebook ads and LinkedIn posts.

The ads are served by newly created and hijacked Facebook business pages, to extend their reach.


News URL

https://www.helpnetsecurity.com/2024/07/16/malicious-ads-facebook-linkedin/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Facebook 30 2 44 52 19 117