A new report from ReversingLabs has warned users about short-form videos on platforms such as TikTok and Instagram Reels that are being used to spread password-stealing malware.
The videos usually promise free access to popular products and subscriptions, including Spotify Premium, Windows, Office, and Adobe. These offers are being used to lure users into following unsafe instructions.
Unlike regular phishing emails, this method asks users to open command-line tools such as PowerShell and run a command shown in the video.
Once the command is run, it downloads and installs malware on the victim’s computer.
The malware identified in the report is Vidar, an infostealer that targets usernames, passwords, cookies, session tokens, cryptocurrency wallet data, personal files, documents, and other sensitive information.
The report highlights a change in how attackers are trying to steal user data.
Email phishing campaigns have long been a common way to trick users into clicking malicious links. However, this method requires victims to manually enter commands into a tool, making the attack more deliberate.
The tactic still works because it takes advantage of users looking for cheap or free access to paid software and subscriptions.
ReversingLabs researchers said this type of social engineering makes it easy for attackers to move traffic from social media platforms to malicious websites controlled by them.
The report shows that social engineering remains one of the easiest ways for attackers to reach victims.
Users should be careful with videos offering free or suspiciously cheap access to paid software and services.
They should only download software from official vendors and avoid following instructions from unknown social media videos.
Using multi-factor authentication can also help protect accounts if login details are stolen.
Get the latest tech news, telecom insights, and product launches wherever you prefer.
Add ProPakistani to Preferred Sources and see more of our stories in Google Search and Top Stories.