G DATA CyberDefense warns of new malware that is being distributed via illegal software downloads, among other things. The "Allcome" malware is primarily aimed at cryptocurrencies and Paypal payments. To do this, Allcome manipulates the clipboard of the Windows operating system.
This manipulation comes into play, for example, when someone wants to send money via PayPal. If the recipient's address is copied from an email or a document into the appropriate field, then Allcome replaces this address with another - the payment then goes to the wrong address. The same applies to transactions in cryptocurrencies.
Cyber gangsters also do marketing
The fact that criminals are now also investing in their marketing is not a new phenomenon. Many marketing campaigns and materials are so elaborate that they appear to be a legitimate product. The malware newcomer Allcome is currently trying to shake up the criminal underground market with a lot of marketing effort. The malware, which specializes in the extraction of data, attracts with an attractive price model - from 25 euros per month - and the possibility of making your own adjustments.
Caution is currently required if unusual behavior of the clipboard is noticed, for example if an e-mail address suddenly changes when pasting. The Allcome malware is definitely dangerous. So anyone who makes PayPal payments or handles cryptocurrencies should always take a few seconds to check the data entered during a transaction," says Tim Berghoff, Security Evangelist at G DATA CyberDefense.
Just a gangster product
But as is often the case beyond the criminal underworld, a simple product is hidden behind the marketing campaign. G DATA malware analyst Karsten Hahn took a closer look at the upstart. His detailed analysis can be found in the G DATA Security Blog. All G DATA solutions detect the Allcome malware.
More at GData.de
About G Data With comprehensive cyber defense services, the inventor of the anti-virus enables companies to defend themselves against cybercrime. Over 500 employees ensure the digital security of companies and users. Made in Germany: With over 30 years of expertise in malware analysis, G DATA conducts research and software development exclusively in Germany. The highest standards of data protection are paramount. In 2011, G DATA issued a “no backdoor” guarantee with the “IT Security Made in Germany” seal of trust from TeleTrust eV. G DATA offers a portfolio from anti-virus and endpoint protection to penetration tests and incident response to forensic analyzes, security status checks and cyber awareness training to defend companies effectively. New technologies such as DeepRay use artificial intelligence to protect against malware. Service and support are part of the G DATA campus in Bochum. G DATA solutions are available in 90 countries and have received numerous awards.