The ongoing malvertising campaign abuses Meta's advertising platform to distribute SYS01stealer malware, targeting Facebook accounts to steal credentials and propagate attacks.
The hijacked Facebook accounts serve as a foundation for scaling up the entire operation. Each compromised account can be repurposed to promote additional malicious ads, amplifying the reach of the campaign.
The primary vector through which SYS01stealer is distributed is via malvertising across platforms like Facebook, YouTube, and LinkedIn, with ads promoting various software and services.
These ads effectively lure victims into clicking, leading to theft of their browser data, including sensitive information if it contains Facebook-related data.
Collection
[
|
...
]