MosaicLoader Malware Uses SEO Poisoning to Infect Software Pirates’ Systems

Dubbed “MosaicLoader”, this new malware gets its name from its sophisticated internal structure tuned to prevent reverse engineering and avoid analysis. Bitdefender researchers revealed today that their attention was caught up by processes that add local exclusions in Windows Defender for specific file names (prun.exe, appsetup.exe, etc.), that all reside in the same folder, called […]

The post MosaicLoader Malware Uses SEO Poisoning to Infect Software Pirates’ Systems appeared first on Heimdal Security Blog.