Active Stocks
Fri Nov 01 2024 19:18:42
  1. Tata Steel share price
  2. 149.70 0.71%
  1. Tata Motors share price
  2. 843.60 1.14%
  1. Reliance Industries share price
  2. 1,339.10 0.49%
  1. State Bank Of India share price
  2. 821.05 0.07%
  1. Wipro share price
  2. 551.15 -0.12%
Business News/ Technology / VLC media player is reportedly under Chinese malware threat
BackBack

VLC media player is reportedly under Chinese malware threat

Cicada has targeted legal and non-profit sectors, as well as organizations with religious connections

VLC media player. (@videolan)Premium
VLC media player. (@videolan)

VLC, the open source and free multimedia player, is among the most used applications across operating platforms. The VLC make easy for the users to play videos and audio files. The easy to use and operate platform can play almost every type of file. The VLC file size makes it compatible to use it conveniently even in low memory devices but the recent reports point that VLC is being targeted by the Chinese hackers.

Symantec's cybersecurity experts say a Chinese hacking group called Cicada is using VLC on Windows systems to launch malware used to spy on governments and related organizations. 

Additionally, Cicada has targeted legal and non-profit sectors, as well as organizations with religious connections. The hackers have cast a wide net, with targets in the United States, Canada, Hong Kong, Turkey, Israel, India, Montenegro, and Italy.

According to Symantec, Cicada uses a clean version of VLC to implant a malicious file alongside the media player's export functions. It's a technique that hackers frequently rely on to sneak malware into what would otherwise be legitimate software. 

Cicada then uses a VNC remote-access server to fully own the compromised system. They can then evade detection using hacking tools like Sodamaster, which scans targeted systems, downloads more malicious packages, and obscures communications between compromised systems and the hackers' command-and-control servers.

The VLC attacks probably began in 2021 after hackers exploited a known Microsoft Exchange server vulnerability. Researchers indicate that while the mysterious malware lacks a fun, dramatic name like Xenomorph or Escobar, they are certain it's being used for espionage. 

3.6 Crore Indians visited in a single day choosing us as India's undisputed platform for General Election Results. Explore the latest updates here!

Catch all the Business News , Technology News , Breaking News Events and Latest News Updates on Live Mint. Download The Mint News App to get Daily Market Updates.

Dive into the Amazon Great Indian Festival Sale 2024!
Jaw Dropping offers on laptops, washing machines, refrigerators, kitchen appliances, gadgets, automotives, winter appliances, luggage and more in amazon diwali sale. Mega Savings this Diwali with Amazon's biggest sale of the year.
More Less
Published: 10 Apr 2022, 08:52 PM IST
Next Story footLogo
Recommended For You