Cybersecurity researchers have identified a new type of malware that can open files, record audio and screen activity, and connect to devices in remote locations to allow cyber attackers to launch further attacks.
The malware, called Playful Ghost, is known for spreading Trojan-infected VPN software through phishing and SEO methods.
The Playful Ghost virus is capable of collecting a wide range of user data. The malware can trap users in four ways, including executing registry keys, scheduled tasks, Windows startup folders, and Windows services.
The malware can record everything from keystrokes to screenshots and audio, installed security apps, clipboard content, system metadata, QQ account information, and installed security products.
This malware can execute files, erase Windows event logs, clipboard data, drop additional payloads, and damage caches, web browser profiles, messaging app storage, and profiles.
