"Criminals Use Malware as Messaging Bots to Steal Data"

Security researchers at Intel 471 have found that criminals are using malicious bots to steal information from victims via the popular Telegram and Discord messaging services.  The researchers noted that some bots can be rented for as little as $25 a day.  The researchers stated that the bot-based malware steals credentials, including virtual private network (VPN) client logins, payment card information, cryptocurrency wallets, operating system data, passwords, and Microsoft Windows product keys.  They can also steal session cookies.  The researchers found that cybercriminals are using messaging apps as command and control mechanisms.  One malware strain observed by the researchers, Blitzed Grabber, uses a feature called webhooks in Discord.  A webhook is an automated message that a computer sends when triggered by an event.  Another malware bot observed by the researchers, X-Files, allows its criminal owners to control it inside the Telegram messaging app.  They can send commands to the bot via Telegram, directing it to steal data and send it to a Telegram channel they choose.

Infosecurity reports: "Criminals Use Malware as Messaging Bots to Steal Data"