Although Cloud9 is a malicious browser plugin, the Zimperium zLabs team said that they did not find it in any official browser store, such as the Chrome Web Store.
Instead, it was more often found disguised as an Adobe Flash Player update on malicious websites.
In a post by blog that details their finding, the Zimperium zLabs team explained the list of things that Cloud9 can do once it enters your device.
These include:
- It tracks your keystrokes (ie keylogger) to steal your banking passwords, credit card information and more.
- Steal your data from copy and paste (ie Clipboard).
- Steal cookies to compromise user sessions
- Use your browser and computer resources to mine cryptocurrencies
- Take control of your device by executing malicious code
- make attacks DDoS from your PC
- Inject popups and ads
According to experts, the botnet was created by a malware group called ‘Keksec’ and is available to purchase for just a few hundred pounds on hacker forums.
“The number of victims affected by this is still unknown,” the team wrote.
“Still, it’s pretty clear that this group of malware targets all browsers and operating systems and therefore tries to increase its attack surface.”
![[Img #73861]](https://thelatestnews.world/wp-content/uploads/2024/09/Dark-matter-near-Mars-300x200.jpg)
