Fraudulent software sites leveraged in new RomCom malware campaign

Numerous fraudulent websites masquerading as legitimate software, including ChatGPT, Gimp, AstraChat, and Go To Meeting, have been used in a new RomCom malware campaign by Cuba ransomware affiliate Void Rabisu, also known as Tropical Scorpius, from December 2022 to April 2023, which was mostly targeted at Eastern Europe, according to BleepingComputer.

affiliate april bleepingcomputer campaign chatgpt cuba cuba ransomware cybercrime december eastern europe europe fraudulent gimp go to malware malware campaign meeting ransomware romcom software tropical scorpius void rabisu websites