OnlyFans has become one of the most popular platforms for disseminating content, especially adult content. A malware campaign is using fake content from this platform to install a remote control trojan to deploy ransomware on the infected device.
This is not the first time that cybercriminals have taken advantage of the popularity of this platform. At the beginning of this year, 2023 The attackers redirected users to a fake page to obtain information.
On this occasion, the attack consists of hiding in a compressed file .zip several Visual Basic scripts (such as those of Microsoft Excel Macros) to be executed once the user accesses the file. This malware is capable of monitoring the webcam, Log keystrokes, manipulate files and even access credentials stored in the browser.
It is important to avoid these situations to download files and executables from dubious places, especially those that promise free access to usually paid content.
Source and Image: Bleeping Computer