A group of hackers tried to take advantage of the fame of Meltdown and Spectre to spread a dangerous malware disguised as patches.
Meltdown and Spectre, the two bugs of processors discovered at the turn of the end 2017 and beginning 2018, have attracted the attention of the press around the world and prompted users to install any type of update happened to shoot. And, it is worth pointing out, it was not at all an obsessive-compulsive behavior. Indeed.
The only weapon available to defend against the bug of processors and to secure the data of computers and smartphones is represented precisely by the updates that software house and manufacturers are releasing at a pace sustained in recent weeks. A very delicious opportunity that various groups of cyber-criminals have not escaped: As reported Malwerbytes, a few days to this part is available online a fake patch for Meltdown and Specter that infects computers on which it is installed. This way hackers have direct access to PC resources and can steal data and information from the hard drive.
Phishing attack to exploit Spectra and Meltdown
To maximize the spread of the virus, hackers have set up a phishing campaign that verges on perfection. Several thousand users-especially in Germany, but it is not excluded that the campaign can soon extend to other nations-have received messages by e-mail or via chat in which they were invited to visit a web portal (apparently linked to German Federal Office for Information Security) from which to download the Windows patch for Specter and Meltdown.
The file, called “Intel-AMD-SecurityPatch-10-1-V1” has nothing to do with the bug of processors, but tries to take advantage of the notoriety it has acquired to spread the malware smoke Loader, a sort of Trojan that opens the computer ports to other malware and Virus. This allows hackers to access the computer’s hard drive and have free access to all of our information.
Updates only through official channels
In addition to warn against attack attempts, Malwerbyte experts remind all users that updates are circulated only through official channels and not through external portals, they were also linked to government agencies. Among other things, Microsoft has already released its patch for Meltdown and Specter, self-downloaded from the operating system for all those users who have activated Automatic Updates.