Researchers have observed a malicious campaign offering fake installers of popular apps and games, such as Viber, WeChat, NoxPlayer, and Battlefield as bait to get users to execute malware on their systems. Two undocumented malware families (a backdoor and a Google Chrome extension) are consistently delivered together by an unknown actor with the alias “magnat”.

<p>Website owners like simple and elegant solutions to solve security problems, such as Multi-Factor Authentication. In the short term, that strategy can be very effective and can definitely weed out certain attackers, but more sophisticated attackers will adapt and evolve. There is no replacement for actively monitoring user behavior at all stages of the website, and being able to dynamically force interventions not just at the login page.</p>