This fourth dimension the drive has been re-designed to target Mozilla Firefox users amongst a banking trojan, called Zeus Panda, says Kafeine, a safety researcher at Proofpoint.
Interestingly, the attackers behind this novel drive are therefore stupid that they forgot to alter the advert of the font, i.e. HoeflerText, due to which tin last easily spotted.
As I previously warned — Next fourth dimension when y'all accidentally soil upwardly on a suspicious website amongst jumbled content prompting to update the Firefox or Chrome font pack yesteryear downloading a missing text font to read the article… Just don't download it. It's manifestly a trap.
Just similar the previous one, the latest Firefox 'HoeflerText font wasn't constitute scam is too really convincing together with slow to autumn for.
The assault initiates amongst an alarm message, which states that "The 'HoeflerText' font was non found," hollo for Firefox users to update their "Mozilla Font Pack."
Once clicked, it downloads a ZIP file (Mozilla_Font_v7.87.zip) on the victim’s system, containing a JavaScript file. Meanwhile, the enshroud volition display a laid of instructions, hollo for victims to run the JS file inwards enterprise to install the missing "Mozilla Font Pack."
If the victims turned out to last therefore stupid that they run the JS file themselves, every bit instructed, the programme volition download the malware payload (.exe) from a remote server together with and then runs it automatically, injecting the Zeus Panda banking Trojan into the infected systems.
Panda is an online banking trojan that was initially constitute to last targeting banks inwards Europe together with North America early on final twelvemonth together with and then started spreading itself to Brazil through at to the lowest degree iii dissimilar exploit kits, including Angler, Nuclear, together with Neutrino.
Once it infects a system, the Zeus Panda banking trojan contacts its command together with command (C&C) server to transportation the infected device information, including a listing of installed antivirus together with firewall products.
Panda focuses on stealing banking credentials from users, every bit good every bit those of bitcoin exchanges, payment carte services together with online payments providers, prepaid cards, airline loyalty programs together with online betting accounts, to advert a few.
To protect yourself from such scams, e'er practise caution when downloading anything from the Internet onto your computers. Moreover, continue your antivirus up-to-date together with produce non ever autumn for scam hollo for y'all to update your Mozilla or Chrome font pack, every bit it already comes amongst everything y'all need.
