|
Title: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: Baofeng on December 07, 2019, 07:48:32 AM https://i.ibb.co/qJdrCvk/Screen-Shot-2019-12-07-at-3-42-18-PM.png (https://ibb.co/5K6RkPB)
Code: https://intervpn.pro/ Quote A cyberthreat actor has created a web site that promotes a fake VPN program that installs the Vidar and CryptBot password-stealing trojans. These trojans will then attempt to steal saved browser credentials and other information from a victim's computer. While investigating a different malware infection, BleepingComputer stumbled upon a website promoting a VPN program called 'Inter VPN' that claims to be the "fastest VPN". It then shows an image of the VPN client, which is actually an image of the legitimate VPN Pro software. https://www.bleepingcomputer.com/news/security/fake-vpn-site-pushes-cryptbot-and-vidar-info-stealing-trojans/ Looks like cyber criminal is upping their game a bit, repacking a crptobot put in a VPN site and then boom!!! unsuspecting crypto enthusiast don't know what really happen until it's too late. Just get your VPN through legit websites. Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: socks435 on December 07, 2019, 11:09:16 AM That is why it's recommended to make your own proxy or socks5 it's easy to make your own Socks5 shared hosting is fine but if you don't want a shared hosting you need a dedicated hosting so that you are the only one who use the server.
I don't trust any VPN nowadays I can make my own Dedicated socks5 free or paid from namecheap. Digital ocean or you can also use amazon aws to make your own socks5 proxy. No could monitor you since you own them except for shared hosting. Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: JeromeTash on December 07, 2019, 02:07:29 PM That is why it's recommended to make your own proxy or socks5 it's easy to make your own Socks5 shared hosting is fine but if you don't want a shared hosting you need a dedicated hosting so that you are the only one who use the server. . I did try using sock5 proxies at one point just to test out on my Telegram app but i was disappointed by the outcome. At first the speed would seem okay but after a couple of hours of days, the loading speed would be so slow and at times non-responsive. I would be forced to look for a new proxy and the cycle would continue all over again until i gave up and just stuck to VPNs.Thou there is a chance of being monitored by the VPN service provider, there is not so much hassle setting up like i experienced with proxies Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: DdmrDdmr on December 07, 2019, 03:54:44 PM <...> The site seems to be a clone of vpnpro[dot]net, with a few changes on the site itself, and more concerning the download file itself, which is logically different, and is the root of the infection. Not that vpnpro seems too popular either, but this practice is similar to that seen on this same forum in relation to some wallets on Ann threads: create a duplicate site, copy the content, and redirect the download link to infected files. All in all, we need to triple check what we download and install.Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: Findingnemo on December 07, 2019, 06:44:51 PM Installing random VPN add ons or applications on your system has a lot of risks similar to what addressed by OP.ALways we have to use paid version of VPNs even legit VPN apps not giving complete security and they store data for some reason which can be misused at some point.
I am using hotspotshield as my vpn software but I rarely using that software because I don't have any reason to hide my origin. Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: Pmalek on December 08, 2019, 08:54:12 AM Windscribe VPN was giving out promotions with 50GB monthly traffic. I remember seeing their ads in the past. Not sure how good their service is though. I think the promotional code was "FREE50" or something like that. I am sure those interested in it can find it if needed.
Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: nakamura12 on December 08, 2019, 09:09:57 AM Installing random VPN add ons or applications on your system has a lot of risks similar to what addressed by OP.ALways we have to use paid version of VPNs even legit VPN apps not giving complete security and they store data for some reason which can be misused at some point. I did use hotspot shield before. Yes, installing random vpn can cause problems or your data might be monitored by the service provider that is why I only use known and legit vpn when i'm having trouble accessing a site but overall, I don't face this kind of problem so I rarely use VPN.I am using hotspotshield as my vpn software but I rarely using that software because I don't have any reason to hide my origin. Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: JeromeTash on December 08, 2019, 04:28:33 PM Windscribe VPN was giving out promotions with 50GB monthly traffic. I remember seeing their ads in the past. Not sure how good their service is though. I think the promotional code was "FREE50" or something like that. I am sure those interested in it can find it if needed. I do use windscribe. i like fact that they have extensions for all the popular browsers which makes setting up and connecting very easy. From what i can tell, i think it's close sourced but that's personally not an issue to me since i have nothing shady that i do.Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: naska21 on December 11, 2019, 10:32:56 AM I don't trust any VPN nowadays I can make my own Dedicated socks5 free or paid from namecheap. Digital ocean or you can also use amazon aws to make your own socks5 proxy. No could monitor you since you own them except for shared hosting. And what about OpenVPN clients? From where I sit... the only thing they need to run is config file that you can check yourself so it seems they can provide volumetric security, right? Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: Zionatin on December 12, 2019, 05:27:40 PM This is why you must not just install any old thing you find. VPN software is serious business and you need a trusted VPN. Why bother to use unknown companies when there are so many good ones around.
The worst is when people want a free VPN. I don't trust any VPN nowadays I can make my own Dedicated socks5 free or paid from namecheap. Digital ocean or you can also use amazon aws to make your own socks5 proxy. No could monitor you since you own them except for shared hosting. And what about OpenVPN clients? From where I sit... the only thing they need to run is config file that you can check yourself so it seems they can provide volumetric security, right? What he describes is exactly what a VPN does anyway. Minus all the features. Yes it is safe with just the config file that is why I use openVPN client. Title: Re: {Warning}: Fake VPN Website Pushes CryptBot and Vidar Info-Stealing Trojans Post by: nelson4lov on December 12, 2019, 09:00:55 PM <snip> The worst is when people want a free VPN. . That's quite understandable considering most of these people wouldn't be able to keep up with the recurring payments. Some just need more privacy and paying that much is out of the point. My only problem with this set of people is that they don't take out time to sought out good yet free alternatives to use. and the chase for free things don't always end well. |
