all InfoSec news
New PHP Variant of Ducktail Infostealer Targeting Facebook Business Accounts
Security Boulevard securityboulevard.com
Introduction
In evaluating the spate of info-stealing malware being distributed over past couple of months, the Zscaler ThreatLabz research team has come across an interesting campaign. The PHP version of Ducktail Infostealer is actively being distributed by pretending to be a free/cracked application installer for a variety of applications including games, Microsoft Office applications, Telegram, and others.
Ducktail has been around since 2021, and is attributed to a Vietnamese threat group. Campaigns to-date have focused on taking over Facebook Business …
accounts business ducktail facebook facebook business infostealer php targeting