Cybercriminals leverage popular movies like Star Wars to lure users into downloading malware to watch exclusive scenes or the full movie.
Experts at Kaspersky have analyzed some threats that exploit the new Star Wars movie The Rise of Skywalker as bait for unaware users.
Just before the official release, on December 20, cybercriminals have flooded social networks and the internet with rogue websites and files offering previews of the ‘The Rise of Skywalker’ movie and free steams.
“Public attention on “Star Wars: The Rise of Skywalker,” which premieres December 19, is already attracting cybercriminals. Kaspersky researchers found over 30 fraudulent websites and social media profiles disguised as official movie accounts (the actual number of these sites may be much higher) that supposedly distribute free copies of the latest film in the franchise.” reads a press release published by Kasperky. “These websites collect unwary users’ credit card data, under the pretense of necessary registration on the portal.”
Crooks set up websites that look like related to the official movie, the websites are designed to deliver the malware or for phishing purposes. Victims are instructed to make a registration or to download executable to access to the exclusive streams.
Crooks used a network of social media profiles where they distribute links to free pirated copies of the new movie. Cybercriminals also flooded file-sharing platforms with malicious files.
Kaspersky experts discovered more than 30 fake and infected streaming sites and social media pages which are advertised as the official pages of the movie. They also spotted around 65 malicious files disguised as the copies of the movie. Kaspersky experts.
“It is typical for fraudsters and cybercriminals to try to capitalize on popular topics, and ‘Star Wars’ is a good example of such a theme this month,” said Tatiana Sidorina, security researcher at Kaspersky. “As attackers manage to push malicious websites and content up in the search results, fans need to remain cautious at all times. We advise users to not fall for such scams and instead enjoy the end of the saga on the big screen.”
The following table shows “Star Wars”-themed malware attacks.
2018 | 2019 | Change | |
Attacks detected | 257,580 | 285,103 | +10% |
Number of unique files | 16,395 | 11,499 | -30% |
Users targeted | 50,196 | 37,772 | -25% |
Attackers leverage ‘black SEO‘ tactic to push the malicious websites, the domains used in the campaign have the official name of the movie and provide thorough descriptions and supporting content.
Using this trick the malicious websites rank higher on popular search engines so that they appear everytime users search for the name of the movie.
The experts warn that the campaign is still active at the moment, crooks are adding new titles of movies and TV-series to the rogue websites.
To avoid falling victim to such kind of scams Kaspersky recommends taking the following steps:
[adrotate banner=”9″] | [adrotate banner=”12″] |
(SecurityAffairs – Star Wars, hacking)
[adrotate banner=”5″]
[adrotate banner=”13″]
A malware campaign has been exploiting the updating mechanism of the eScan antivirus to distribute…
The Treasury Department's Office of Foreign Assets Control (OFAC) sanctioned four Iranian nationals for their…
A cyber attack on Leicester City Council resulted in certain street lights remaining illuminated all…
The National Police Agency in South Korea warns that North Korea-linked threat actors are targeting…
The U.S. Department of State imposed visa restrictions on 13 individuals allegedly linked to the…
A cyber attack has been disrupting operations at Synlab Italia, a leading provider of medical…
This website uses cookies.