Explorer

YouTube Content Creators Beware! Malware Named YTStealer Is Targeting YouTube Channels, Stealing Credentials

A new malware named YTStealer has been on the prowl and it is targeting YouTube content creators.

A new malware named YTStealer has been on the prowl and it is targeting YouTube content creators. The YTStealer malware attacks YouTube content creators by stealing authentication cookies and hijacking their channels. The malware has been identified by a researcher named Joakim Kennedy of security research firm Intezer.

"In this blog post, we are describing a new malware that we have concluded is highly likely sold as a service on the Dark Web. We have named the malware YTStealer because its sole objective is to steal authentication cookies from YouTube content creators. In June 2020, IntSights released a report on a new trend that they observed. In this trend, threat actors were selling access to YouTube accounts," Kennedy wrote in the blog post.

The researcher has shared one of the many methods threat actors are using to obtain these YouTube accounts.

YTStealer is essentially a malware whose objective is to steal YouTube authentication cookies. As a stealer, it operates like many other stealers. The first thing it does when it’s executed is to perform some environment checks. This is to detect if the malware is being analysed in a sandbox. The code that performs the checks comes from an open-source project hosted on GitHub called Chacal.

What sets YTStealer aside from other stealers sold on the Dark Web market is that it is solely focused on harvesting credentials for one single service instead of grabbing everything it can get hold of.

"When it comes to the actual process, it is very similar to that seen in other stealers. The cookies are extracted from the browser’s database files in the user’s profile folder," Kennedy added.

Top Headlines

Centre Issues Notice To Meta Over WhatsApp Usernames Roll-Out, Seeks Reply In 3 Days
Centre Issues Notice To Meta Over WhatsApp Usernames Roll-Out, Seeks Reply In 3 Days
EXCLUSIVE | Asus Is Betting India's Next PC User Won't Buy A 'Regular' Laptop
Asus Is Betting India's Next PC User Won't Buy A 'Regular' Laptop
Centre To Examine WhatsApp User ID Feature Over Fraud Concerns
Centre To Examine WhatsApp User ID Feature Over Fraud Concerns
Why Smart Indian Investors Are Betting On AI, Space, And Global ETFs
From AI To SpaceX: Why Indian Investors Are Looking Beyond Domestic Markets

Videos

BREAKING: Court Recovery Records Detail Cash, Dollars and Valuables Seized in Ayodhya Temple Case
BREAKING: Exclusive Recovery Records Reveal Major Cash Haul in Ayodhya Temple Offering Theft Case
No Cap With Megha Prasad: Was the Ram Mandir Donation Scandal Suppressed on June 5?
Ram Temple Donation Theft: Biggest Misappropriation Allegedly Took Place During Maha Kumbh, Say Sources
Ram Temple Donation case: Akhilesh Yadav Says ‘Lord Ram Made Me a Medium’ to Raise the Issue

Photo Gallery

25°C
New Delhi
Rain: 100mm
Humidity: 97%
Wind: WNW 47km/h
See Today's Weather
powered by
Accu Weather
Embed widget