Researchers with Trend Micro have discovered a new malware campaign in which victims are infected with ‘Slub’ malware through a watering hole attack on an unnamed website. The malware allows attackers to steal data from infected Windows devices by relying on Slack, GitHub and file.io, a popular file-sharing website.
In a watering hole attack, threat actors inject malicious code into a legitimate website that is likely to be frequented by the users who are the real targets of the attackers. When victims visit the website, their device will be infected. In this case, the compromised website appealed to people interested in “political activities”, and would infect users with ‘Slub’.
Read more: Windows malware: Slub taps Slack, GitHub to steal your info
