The test takers started with two office applications on the North VPN website
As a result, the researchers tried to extract Win32.Bolij.2 from the Trojan bank.
Launched on August 8 at the NordFPN fake website, Nord-vpnclub, it attracted thousands of visitors this month, Dr.Web
19 commercial goods were reported. This site is free
In terms of design, color and decoration, such as the official website nordvpn.com also has a valid SSL certificate.
Fraudulent websites prevent visitors from accessing the program hosted by Boliz 2. Researchers
The Trojan detects the advanced version of Win32.Bolik.1 and finds that it is running malicious files.
They can navigate websites, block traffic, steal information or steal information from various bank users.
This assailant is a cousin of the same person as he was translated last year
360 Office Web and Office System
Running a program / office. Dr.Web spoke specifically;
This program is not only Bolij.2 but also Trojan.PWS.ZStealer.26645,
On the one hand, it is called the Hant Information Thief.
Last April, Dr. Criminal cases in the same network of cybercriminals
The video editing program removed it and used a VDSC page
Boliz.2 links to share the KPOT Steeler program. Add it
So a recent visit is not an attempt to provoke sites
Instead, the heirs made fake cards themselves.