Summary: Zhong Stealer malware poses a major threat to fintech and cryptocurrency sectors, exploiting customer support platforms through social engineering. Disguised as legitimate files, it infiltrates organizations, exfiltrates sensitive data, and avoids detection by manipulating system components. This incident underscores the increasing sophistication of cyber threats targeting financial service industries.
Affected: Fintech and cryptocurrency organizations
Keypoints :
- Zhong Stealer uses social engineering tactics to trick support agents into downloading malicious files, initiated through fraudulent support tickets.
- The malware connects to a command-and-control server in Hong Kong, employing tactics to establish persistence and evade detection.
- Organizations are urged to enhance cybersecurity by training staff, implementing zero-trust policies, and utilizing advanced malware analysis tools.
Source: https://gbhackers.com/new-zhong-stealer-malware-exploit-zendesk/