Cybersecurity researchers have identified a new type of malware that can open files, record audio and screen activities, and connect to remote devices, allowing cyber attackers to carry out further attacks. This malware, known as “Playful Ghost,” is known for spreading trojan-infected VPN software through phishing and SEO techniques.
The Playful Ghost virus is capable of collecting vast amounts of data from users. It can infect users through four main methods: running registry keys, scheduled tasks, Windows startup folder, and Windows services.
This malware can record everything from keystrokes and screenshots to audio, installed security apps, clipboard content, system metadata, QQ account information, and more. It can execute files, erase Windows event logs, delete clipboard data, drop additional payloads, and damage cached data, web browser profiles, messaging app storage, and user profiles.
