Recently, cyber criminals created virtual personal tax websites for VPN North and two office applications
The researchers said the results were designed to attract visitors to the Win32.Bolij.2 trojan.
The head office of NordVPN – Nord vpnclub, launched on August 8, has attracted thousands of visitors this year, Dr.Web
Reports on the company blog after August 19 [The site is real, found
The site itself, nordvpn.com, is the same for the same design, color scheme and font. And there is even an appropriate SSL
The fake site is trying to convince visitors to download the app that comes with Bolij2. Researcher Dr.Web
The Trojan, identified as an updated version of Win32.Bolik.1, claims to have the features of this polymorphic multi-component
And networks of various customer banks that block traffic, block keychains, and steal data
A similar program of those who attacked last June,
Both company accounts and Crystal Office network sites
Participates in business office programs. Especially Webb
The program is not only for Bolij.2, but also for Trojan.PWS.ZStealer.26645,
Also known as Predator-Predator.
Last April, PhD. This site has the only criminal organization available on the web
It is compatible with VDSC software and video web interface
Bolge.2 and the KPOT save tool have been corrupted due to a malware connection. I want you all the time
However, threats are not necessary for new campaigns.
This attack is fake only your website.