Your Computer will be Infected with Malware with False Spectre/Meltdown Patch

The Meltdown/Specter incident isn't finished yet, obviously not until everybody fixes both their OS and BIOS firmware. But, we are now starting to keep an eye on the attackers who are endeavoring to exploit this circumstanceby distributing malware containing false patch.

On 11th January, after the week when the Meltdown/Spectra virus was revealed by the analysts driven by Google, Brian Krzanich,Intel's CEO, wrote a small letter online requesting seriousness, security and clarity from the organization and also larger industry.

Krzanichwrote, which is uploaded on thestar.com 17/01/2018, Following theannouncements of security exploit of Google's Project Zero last week, Intel has kept on working closely with the partners with the mutual objective of reestablishing trust in the security of the client's data as fast as possible.

Meltdown/Spectre is created by Intel and other big supplier in chips. When the users reach the fake site, they will receive a specific download link which can ZIP archive named Intel-AMD-SecurityPatch-11-01bsi.zip.This link contains a patch which truly is a bit of malware, the news says. The flaws enable the hackers so that they can steal information from the memory of functioning app with passwords, browser history and email in several types of styles.

After operating the .exe file, the "Smoke Loader" virus will affect victim's system; this will enable the hackers to send fresh malware code to the affected machines. After infection the virus tries to make link to different domains through encrypted channels.

If the fake patch is downloaded or run, the Smoke Loader virus will infect the system. Smoke Loader can recover extra payloads as well as traffic scannedMalwarebytesappears to show it attempting to link to several domains and deploy encrypted data.

Users should be alert all the time if a specific website asks to download a particular file, as it is extremely uncommon that an organization will contact victims, through own email, to enable a patch.

Beside the threat posts from this website, even authentic Specter as well as Meltdown patches have been causing issues for clients. They've prompted unstable machines, unpredicted reboots, and many more.

» SPAMfighter News - 1/23/2018