Cybersecurity researchers have identified dangerous news malware subscription service capable of facilitating a wide variety of attacks.
Dubbed ‘Eternity Project’, the modular malware kit contains features that allow buyers to steal Passwords and credit card information, launch Ransomware attacks, infect victims with cryptomining malware and more.
In the future, malware authors also intend to release new features, including a utility that helps users launch targeted programs. DDoS attacks.
The Eternity Project kit is marketed on a Telegram channel with around 500 members, which is used by developers to announce new features and instruct buyers on how to most effectively deploy the malware.
After selecting the desired feature set and paying the corresponding fee in cryptocurrency, buyers can use the Telegram Bot to automatically compile the binary. The ransomware module is the most expensive of them all (at $490/year), but channel members can purchase the crypto-miner for less than $100/year.
An in-depth analysis of the infostealer module also highlights the versatility of the malware. According to the researchers, this unique utility can be used to harvest various data from a diverse range of applications, from web browsers and crypto wallets for vpn clients, messaging apps and more.
Worryingly, the Eternity Project Toolkit is supposed to circumvent anti-virus and endpoint protection services too, a claim corroborated by Virus Total’s tests. Researchers from Cyble, the company responsible for identifying the threat, also claim that the malware is actively circulating in the wild.
Despite the range of threats posed by Eternity Project malware, Cyble says there are several ways to protect yourself. Good practice advice includes regular maintenance data backupsensuring that the software is always up to date and refraining from opening untrustworthy links and E-mail attachments.