Painting Tool Malware Harvests Facebook Credentials and Payment Information
Researchers from Radware recently reported that a painting software called StressPaint that carries a malware has already affected around 45,000 Facebook users after being spread just a few days ago.
The malware is said to steal the credentials, payment information, and various other data from Facebook page owners which can be used for identity theft, malvertising or propaganda campaigns. The app does this by copying the content of Chrome browser cookies and login date files. Any Facebook credentials are then sent to a C2 server.
The malware can often go undetected by the device’s antivirus software as it only goes active for less than a minute on specific instances, such as first run, computer restart and stress pain tool rerun.