"'Vortax' Meeting Software Builds Elaborate Branding, Spreads Infostealers"

A cryptocurrency theft campaign is spreading infostealers through fake virtual meeting software for macOS and Windows. The campaign, discovered by the Recorded Future's Insikt Group and attributed to a threat actor dubbed "Markopolo" is behind the elaborate web and social media presence for a fake app called "Vortax." The app appears to be a virtual meeting software for different platforms, but delivers "Rhadamanthys," "Stealc," and "Atomic" infostealers. The attackers target cryptocurrency users through social media and Telegram channels to steal credentials, so they can then steal cryptocurrency from them. This article continues to discuss Markopolo's widespread campaign aimed at stealing cryptocurrency.

Dark Reading reports "'Vortax' Meeting Software Builds Elaborate Branding, Spreads Infostealers"

Submitted by grigby1

Submitted by Gregory Rigby on