Be vigilant if you’re using an online PDF converter – the FBI recently issued a warning that threat actors have specifically been using online file conversion services to spread infostealing malware.
As reported by the Indian Express, security firm CloudSEK has discovered an attack that mimics pdfcandy.com in order to trick users into downloading the ArechClient malware, which belongs to the SectopRAT family of infostealers.
The fake site allows users to upload a PDF file to convert it into a Word document, which requires CAPTCHA verification to complete. Upon completion of the CAPTCHA, users are given a prompt to run a PowerShell command to begin downloading the malware which is downloaded onto their computers under the file name ‘adobe.zip.’
How to stay safe
Because this malware relies on users visiting look-a-like websites instead of the actual company's site that they intent to visit, being extremely cautious and vigilant about what websites you visit to download software is the first step.
Make sure you're downloading software from legitimate sources, and double and triple check the URLs you're visiting and the developer pages.
It also's good to make sure you have one of the best antivirus programs set up, and updated, before you begin downloading files on the internet – many of them include features that can help protect you from malware as well as additional features like a VPN or hardened browser that can help protect you online.
Keep in mind, there are offline tools that will convert these files as well.
More from Tom's Guide
You must confirm your public display name before commenting
Please logout and then login again, you will then be prompted to enter your display name.
