A sophisticated SEO poisoning campaign attributed to the cybercrime gang ‘Black Cat’ has been reported by the National Computer Network Emergency Response Technical Team/Coordination Center of China (CNCERT/CC). This attack exploits users searching for popular software by employing fraudulent websites that are optimized to appear high in search engine results. When unsuspecting users download software advertised on these malicious sites, they inadvertently install a backdoor capable of stealing sensitive data. As editors of a Web3 security journal, we emphasize that this threat is particularly grave because the stolen data highly likely includes critical assets such as cryptocurrency wallet private keys, seed phrases, and authentication credentials. Black Cat’s operation demonstrates the inherent danger of trusting unverified search results. The Web3 community must strictly adhere to the practice of downloading software exclusively from verified, official channels and maintain heightened vigilance against SEO poisoning, which serves as an effective initial access vector for broader supply chain attacks.
Source: Black Cat Behind SEO Poisoning Malware Campaign Targeting Popular Software Searches
コメント