• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
TechEngage

TechEngage

Technology news and opinions

  • Tech News
  • Reviews
  • How-to
  • Science
    • Energy
    • Environment
    • Health
    • Space
  • Apps
  • More
    • Opinion
    • Noteworthy
    • Roundups
    • Culture
    • Blockchain
      • Cryptocurrency
    • Events
    • Deals
    • Startups
      • Startup Submissions
  • Videos
  • Login
Security

Hackers hiding crypto malware in Adobe Flash updates

Avatar for Muhammad Abdullah Muhammad Abdullah October 12, 2018

fake adobe flash update
source: Pixabay

Hackers are injecting crypto-mining software in fake Adobe Flash updates

Hiding malware in Adobe flash updates is an old tactic. However, a researcher from cyber security company Palo Alto Networks reports signs of crypto-miner malware in the fake Adobe Flash updates. Palo Alto researcher said that the miners use your computer to expand their control over installing the affected update. The update package updates the plugin itself but also installs an illicit mining malware on your computer that eventually lowers your computer’s performance and uses it for mining purpose.

What’s happening?

These fakes are tricking users into installing Adobe Flash updates, and as soon as the user installs the update, the malware also gets installed on the computer. The update seems legitimate but is insidious.

Fake adobe flash updates
Source: Palo Alto Networks

The researcher also reported that the hackers are more interested in Monero coin and are using illicit mining leaving no marks. Monero coin’s privacy protocol makes it extremely hard to trace, and hence it’s a win for malware injectors. The fake installers update the Adobe Flash plugin but also installs XMRig in the background. The program after getting installed on the victim’s computer uses graphics card and processing power to mine Monero coin without any notice.
Because of the legitimacy of the update, the victim may not notice anything about the malware. Meanwhile, the miner is quietly running in the background of the person’s Windows computer. It is a new type of deceptive attack where researcher noticed that the files they saw are starting with “AdobeFlashPlayer_ _” and are from non-Adobe servers. To keep a check on your downloads, you should know that these downloads always contain string “flashplayer_down.php?clickid=” in the URL of the download. Palo Alto researcher found almost 113 examples of this malware since March.
The malware attacks are reportedly a planned campaign. The distribution of these cryptocurrency minders is happening via the distribution of legitimate software updates. An educated user with a decent web filter installed can lower the risk of becoming a victim of these fake updates.
Let us know what do you think about this deception by hackers!
Share your thoughts in the comments below.

Related Stories

  • Retail store Target's Twitter account got hacked

    Retail store Target's Twitter account got hacked

  • Data Leak in Moscow worries many

    Data Leak in Moscow worries many

  • The evolution of cybersecurity accessibility

    The evolution of cybersecurity accessibility

Avatar for Muhammad Abdullah

Muhammad Abdullah

Editor-in-chief

Tech geek, polymath, and movie enthusiast. Batman, who doesn't like coffee. Totally in love with gadgets, animals, and writing about technology.

Reader Interactions

Join The Discussion: Cancel reply

Please read our comment policy before submitting your comment. Your email address will not be used or publish anywhere. You will only receive comment notifications if you opt to subscribe below.

Primary Sidebar

Become a contributor

We are accepting contributor applications. All applications will be decided in 3 days after applying. To learn more click here.
TechEngage-Apple-News
TechEngage-Google-News

Recent Stories

  • 6 best car scratch removers on Amazon for 2021
  • Best iPhone 12 and iPhone 12 Pro wallet cases for 2021
  • Best video game consoles to buy on Amazon in 2021
  • Best gaming mouse in 2021
  • Best soft couch covers and sofa slipcovers on Amazon for 2021
5 best Cameras

Best Cameras in 2021: which one is right for you?

Google Chrome logo

Must-have best browser extensions 2021

dual whatsapp, double whatsapp app

How To Run Multiple WhatsApp on Android Phones [Video Tutorial]

how to make bootable usb

How to make a bootable USB

Footer

About Us

  • Advertise
  • Send us a tip
  • Startup Submission Questionnaire
  • Community Guidelines
  • Corrections Policy & Practice
  • Contact us

Discover

  • About
  • Newsroom
  • Advertise
  • Brand Kit
  • Partners
  • Staff
  • Our Ethics
  • Publication Principles
  • Contact us

Legal Pages

  • Reviews Guarantee
  • Community Guidelines
  • Cookies Policy
  • Comments Policy
  • Our Ethics
  • Disclaimer
  • GDPR Compliance
  • Privacy Policy
  • Terms and Conditions

Download our apps

TechEngage-app-google-play-store

Copyright © 2021 · All Rights Reserved · TechEngage® is a Project of TechAbout LLC.
TechEngage® is a registered trademark in United Kingdom under Trademark Number UK00003417167 and is ISSN protected under the ISSN 2690-3776 and OCLC Number 1139335774.