Fake Meta suspension warnings used in new malware campaign — how to protect your devices and your data

A new FileFix attack is using novel lures in order to trick users into downloading malware. As reported byBleeping Computer, this latest version of the increasingly popular social engineering attack was first discovered by Acronis, who noticed that hackers have been using the FileFix technique and sending out fake Meta account suspensions in order to convince users to unknowingly download the StealC infostealer.

StealC can exfiltrate usernames and passwords from a wide variety of platforms including credentials stored in the cloud, credentials and authentication cookies from web browsers, credentials from messaging apps, cryptocurrency wallets, VPNs and gaming apps, and it can take screenshots of your desktop too. This new FileFix attack is tricking users by sending fake warning messages