Safe + Secure
PC Matic Complete Security
Products
Antivirus
PC Matic VPN
Identity Protection
PC Matic Privacy
Support Unlimited
Threat Awareness
How PC Matic Protects You
SuperShield Allowlist
Business Protection
PC Matic Pro
PC Matic for SMB
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
The Cyber Scam Report
Town Hall Sessions
Tools & More
Password Generator
Internet Speed Test
What Is My IP?
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support
Search

Cybercriminals Use YouTube Comments and Google Results to Spread Malware

Cybercriminals are increasingly clever in deceiving individuals into downloading malicious software. Recent research by Trend Micro highlights a novel tactic targeting users looking for pirated or cracked software. By utilizing reputable platforms such as YouTube and Google, they distribute malware to steal personal data.

How the Attack Works

Hackers are taking advantage of YouTube and Google search results to spread their malware:

YouTube Videos:

Hackers create fake tutorial videos that claim to show how to install pirated software. These videos include links in the description or comments that lead to malicious downloads.

Google Search Results:

Cybercriminals manipulate Google search results to display fake download links. These links appear legitimate but instead install malware on the victim’s device.

To make their attacks more convincing, hackers host these harmful files on trusted platforms like Mediafire and Mega.nz, making it harder to detect the threat.

Tricks to Avoid Detection

Hackers use advanced methods to avoid getting caught:

  • Password-Protected Files: They use passwords on files to prevent security systems from scanning them.
  • Encoding and Obfuscation: These techniques hide the malware, making it harder for antivirus programs to find.
  • Data Theft: Once installed, the malware steals sensitive information like passwords and cryptocurrency wallet details.

Types of Malware Used

Several types of malware are being spread in this campaign, including:

  • Lumma Stealer: Steals passwords and other private data.
  • Vidar and MarsStealer: Targets cryptocurrency wallets.
  • PrivateLoader and Amadey: Collect personal information and login credentials.

Exploiting Trusted Platforms

Hackers rely on the trust people place in platforms like YouTube and Google. Some examples include:

  • A fake YouTube video claiming to offer a free “Adobe Lightroom Crack,” with links leading to malware.
  • Malicious links in Google search results for Autodesk software, redirect users to harmful downloads.

They often use shortened URLs and password-protected files to make their attacks harder to detect.

Staying Safe from Malware

Here are some tips to protect yourself and your organization:

  1. Stay Informed: Learn about the latest threats and how they work.
  2. Educate Employees: Train staff to avoid downloading pirated software and recognize suspicious links.
  3. Use Security Tools: Install strong antivirus software and firewalls to detect and block threats.
  4. Check Sources: Only download software from official, trusted websites.
  5. Layer Your Security: Combine multiple tools and methods for better protection.

Conclusion

Infostealing malware is a growing threat, and cyber criminals use trusted platforms to spread it. You can protect yourself and your data from these attacks by staying alert and following best practices.

Source: Montalbano, Elizabeth. “Cyberattackers Hide Infostealers in YouTube Comments, Google Search Results.” Contributing Writer, January 13, 2025.

Stop Responding to Threats.
Prevent Them.

Get Protected

Want to get monthly tips & tricks?

Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

Related Articles