Supply Chain Compromise Leads to Trojanized Installers
Essential information
- Published
- 01/07/2024 11:05
- Modified
- 01/07/2024 11:18
- Tags
- 2024-07-01 copywhiz notezilla recentx supply-chain
- Related entities
- 27 observables, 12 techniques (mitre)
Description
Rapid7 discovered that installers for Notezilla, RecentX, and Copywhiz hosted on conceptworld[.]com were trojanized to execute information-stealing malware. The malware can steal browser credentials, crypto wallet info, clipboard data, and keystrokes, as well as download additional payloads. Rapid7 disclosed the issue to Conceptworld, who promptly removed the malicious installers.