By now, all modern business owners understand that staying ahead of cybersecurity risks can be a constant challenge. Crime evolves, and clever hackers are always seeking new avenues to exploit sensitive data or target vulnerable users. This is exactly the basis for a whole new cyberthreat: ZenRAT malware poses risk to business owners across all industries!
Researchers first discovered this threat in a fake domain for Bitwarden, a popular password manager. Malicious hackers use it to get businesses to download fake installation packages via the deceptive domain bitwariden[.]com. If you fall for the download, you grant the hacker access to your business’s most sensitive information, including passwords.
Windows users are especially vulnerable to this type of attack, which uses a fairly good imitation landing page and pretends to be Bitwarden's legitimate website. Anyone who clicks the Windows download link will also receive a malicious code, opening their system up to future attacks. But clicking the fake page's download button for Mac or Linux programs actually redirects you to the real Bitwarden website!
The damaging effect of this exploitation of Windows is clear. However, what isn't yet understood is how businesses end up visiting this fake domain. One clue is that hackers seek to infect computers with similar types of malware by targeting users through SEO poisoning or email messages, so this may play a role here.
ZenRAT gets its name thanks to its design as a modular Remote Access Trojan, which connects with the command and control server. Malware of this nature can steal information from vulnerable users and create big problems for business owners, such as the following risks of password and data theft:
Unsurprisingly, all of these risks also lead to major financial loss for your business, especially if the ransomware attacks force business owners to pay hackers to regain control. As lengthy business interruptions make your company less productive and you lose customer confidence as a result of a data breach, the costs of subpar cybersecurity mount quickly.
Hackers practice deception to carry out phishing attacks, social engineering fraud, and other security exploits. However, ZenRAT malware is just the latest example of how important it is to verify links. The moral of the story is that business owners, employees, and customers alike should never blindly download anything, whether it’s a fake password manager program or a plugin to view a video.
Don’t underestimate this new cyberthreat: ZenRAT malware poses risk to business owners, but it’s only one of the countless threats out there. Recognize your company’s vulnerabilities and protect your business.