Cybercriminals have been spotted using SEO poisoning to distribute a new malware loader that tries to infect the target endpoint (opens in a new tab) with a dozen malware families.

Kaspersky researchers have found that, for many people, typing the keyword “software crack” on Google brings up many websites distributing this new malware loader, some of which even made it to the famous first page of search results. The bootloader in question is called “NullMixer” and is designed for the Windows operating system and apparently installs all kinds of password stealers, viruses, backdoors, banking Trojans, cryptocurrency miners. The only thing seemingly missing is ransomware.

Leave a Reply

Your email address will not be published. Required fields are marked *