Kaspersky: "The Joker" topped the list of movies most used by digital criminals to distribute malware.
Popular movies are gaining the attention of digital criminals, and as the "Oscars" approach, their preoccupation skyrockets. To better understand how digital criminals try to exploit our interest in high-profile movies, Kaspersky's researchers looked at the extent to which such scams are taking place.
With more than 20 phishing sites and 925 malicious files crawled under the guise of this year's nominees, the findings show that those looking for a nice night in front of the screen watching a recent blockbuster should be on the lookout for such scams.
Kaspersky found more than 20 phishing websites and Twitter accounts that offered users the chance to watch the nominated movies for free. These sites collect users' data and prompt them to perform various tasks in order to access the desired movie. These can range from conducting research and sharing personal information, to installing adware or even giving out details of credittheir cards. Needless to say, at the end of the process, the user does not get the content.
Candidacyfor Best Picture Oscar
|
|
1 |
1917 |
2 |
Ford v Ferrari |
3 |
Jojo Rabbit |
4 |
Joker |
5 |
Little Women |
|
marriage story |
7 |
Once upon a time in Hollywood |
8 |
P |
9 |
The Irishman |
The Oscar nominations for Best Picture analyzed by its researchers Kaspersky
An example of a phishing site that collects credit card information
An example of a Twitter account promoting a phishing site
To further support the promotion of fraudulent websites, cybercriminals have also set up Twitter accounts, to which they distribute links to content. Combined with malicious files that spread through different channels, this brings them successful results.
Malicious files spread on the internetnetwork as copies of the candidate films, they also provide an indication of the interest levels of the candidates. Kaspersky researchers compared malicious activity under the name of recommended movies during the first four weeks after the movie's public premiere. As a result, "Joker" took first place among the films used – it was the most popular film among cybercriminals with 304 malicious files named after the Gotham villain. "1917" came in second with 215 malicious files, the Irishman on Tuesday with 179 files. The Korean movie 'Parasite' had no malicious activity associated with it.
The number of malicious files detected by Kaspersky products under the guise of candidate films
Kaspersky also looked at whether there was a significant increase in malicious files shortly after the film's public release. This showed that most of the malicious files appeared in the third or fourth week after the film's release in cinemas, although some were distributed even before the premiere.
The number of malicious files detected by Kaspersky products
Kaspersky experts also analyzed whether the availability of a movie on a streaming platform affects the likelihood that users will search for its illegal copy on the Internet, comparing malicious activity after the initial release in limited theaters and actual release on Netflix.
In the case of "Marriage History", no malicious programs were detected before and after the initial release of the film in cinemas. However, cybercriminals began using the film's title after it was released on Netflix, reflecting the interest in the film. In the case of the long-awaited "Irishman", although fewer users found a copy of the film on the Internet, they were more determined to do so - the number of scans after the film's initial limited release in the cinema was released on Netflix.
"Cybercriminals are not bound by the exact dates of movie premieres, as they do not actually distribute any content other than malicious data. However, as they take advantage of trends, they depend on user demand and actual file availability. "To avoid falling victim to criminals, you only use legitimate platforms and subscriptions to ensure you can enjoy a nice night in front of the TV without worrying about any threats," said Anton Ivanov, a malicious software analyst at Kaspersky.
To avoid falling prey to malicious programs that pretend to be popular movies or TV shows, Kaspersky recommends that you follow these steps:
- Pay attention to official movie release dates in cinemas, streaming services, TV, DVDs or other sources.
- Do not click on suspicious links, such as those that promise to show a new movie before it is officially released.
- Check it out extension of the file you have "downloaded". Even if you are going to "download" a video file from a source you consider trustworthy, the file should have an .avi, .mkv or .mp4 extension among other video formats, definitely not .exe.
- Check the authenticity of the site. Do not visit sites that allow you to watch a movie until you are sure that they are legal and that they start with "https".
- Confirm that the website is authentic by double-checking the format of the URL or spelling of the company name, reading reviews about it, and checking the domain registration data before you start downloading.
- Use a reliable security solution