New PHP Version of Ducktail info-stealer hijacks Facebook Business accounts


Researchers from Zscaler have found a PHP variant of the data-stealing virus known as Ducktail. Games, Microsoft Office programmes, Telegram, and other programmes are among those that include the dangerous code in their free or pirated instals.

Experts believe a Vietnamese threat organisation was responsible for the operation of Ducktail, which has been operational since 2021. Researchers from WithSecure identified a DUCKTAIL campaign in July 2022 that was aimed at people and businesses using Facebook’s Business and Ads platform. Read More…