Trojan Abuses Microsoft Phone Link App to Steal Your Passwords
Cisco Talos says the malware can steal SMS messages and one-time passwords without compromising the mobile device.
10 Articles
10 Articles
CloudZ RAT Malware Could Exploit Microsoft Phone Link App to Access Messages and OTPs, Researchers Warn
Microsoft’s Phone Link app could become a target for threat actors if a connected Windows PC is infected with malware. According to security researchers, an ongoing campaign potentially targets victims with a remote access trojan (RAT) called CloudZ. It reportedly compromises systems and can intercept sensitive information synced between smartphones and PCs when using the Phone Link app.
Your Phone Link setup on Windows could be at risk from this Trojan
TL;DR Attackers are spreading CloudZ RAT via a fake ScreenConnect update that quietly installs malware. The malware can steal browser credentials and even pull data from Microsoft Phone Link using a plugin, putting synced phone and PC data at risk. If your PC is compromised, anything shared with your phone, including messages and OTPs, could be exposed. Installing software from trusted sources is the only way to stay cautious. Microsoft Phone L…
The cloudZ malware uses Microsoft Phone Link on Windows to access sensitive SMS and one-time passwords. Criminals do not infect the smartphone, but secretly read out the local database of the app on the PC. (Read more)
The integration between mobile and computer has never been so convenient, especially with Microsoft Phone Link, which allows you to access messages, notifications and even calls directly on Windows. However, this practicality has become the target of a new threat: Malware CloudZ. This RAT (Remote Access Trojan) uses a plugin called Pheno to explore this integration and steal OTP codes and SMS messages without having to compromise the smartphone.…
Coverage Details
Bias Distribution
- 100% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium
