Blognewssecuritymalwarewindows

USB worm spreads crypto-stealing malware via Windows shortcut links

USB worm spreads crypto-stealing malware via Windows shortcut links

According to BleepingComputer.com, a USB worm is infecting computers using Windows shortcut links on USB flash drives.

infection process starts with the victim opening the LNK file, triggering the malware on the USB drive. Additional payloads are staged from a .ONION address.

What is a shortcut or link? It is basically a tiny file that "points" to another file or folder somewhere else on the computer. It's generally indicated by a tiny arrow in the corner of the icon image similar to the following image: image

In this case it points to a malware file elsewhere on the attached USB drive.

No mitigation process is listed in the article so the best solution is to avoid clicking Windows shortcut links on questionable USB drives.

More details can be found here: https://www.bleepingcomputer.com/news/security/usb-worm-spreads-crypto-stealing-malware-via-windows-shortcut-files/

All posts