"Various Malware Lurks in Discord App to Target Gamers"
Security researchers from Zscaler ThreatLabZ have found multiple active malware campaigns targeting the Discord group-chatting platform. The app is used by gamers and for creating communities on the web, called “servers,” either as standalone forums or as part of another website. Discord supports voice, video, or text, allowing all to interact within created communities. Malware found being planted recently in Discord includes Epsilon ransomware, XMRig miner, Redline Stealer, TroubleGrabber, and a broad category of unidentified Discord token grabbers, according to the researchers. The new Discord attacks observed by researchers usually start with spam emails in which users are tricked with legitimate-looking templates into downloading next-stage payloads. The attack vector uses Discord services to form a URL to host a malicious payload. According to the researchers, the campaigns rename malicious files as pirated software or gaming software and use file icons related to gaming to trick victims.
Threatpost reports: "Various Malware Lurks in Discord App to Target Gamers"