Cyber Criminals has started targeting Youtubers in promoting the trojan malware links.
Cybercriminals are sending bogus copyright claims to YouTubers to coerce them into promoting malware and cryptocurrency miners on their videos. The threat actors take advantage of the popularity of Windows Packet Divert (WPD) tools that are increasingly used in Russia as they help users bypass internet censorship and government-imposed restrictions on websites and online services. YouTube creators catering to this audience publish tutorials on how to use various WPD-based tools to bypass censorship and are being targeted by threat actors posing as the copyright holders of these tools. In most cases seen by Kaspersky, the threat actors claim to be the original developers of the presented restriction bypass tool, filing a copyright claim with YouTube and then contacting the creator to offer a resolution in the form of including a download link they provide. At the same time, they threaten that non-compliance will result in two more "strikes" on YouTube, which could lead to a channel ban based on the platform's "three strikes" policy. In other cases, the attackers contact the creator directly, impersonating the tool's developers and claiming that the original tool has a new version or new download link, asking the creator to change it on their video. The creators, fearing they will lose their channels, give in to the threat actors' demands, and agree to add links in their videos to GitHub repositories that host the said Windows Packet Divert (WPD) tools. However, these are trojanized versions that include a cryptominer downloader instead. Kaspersky has seen this promotion of laced WPD tools take place on a YouTube video that generated over 400,000 views, with the malicious link reaching 40,000 downloads before it got removed. A Telegram channel with 340,000 subscribers has also promoted the malware under the same disguise."According to our telemetry, the malware campaign has affected more than 2,000 victims in Russia, but the overall figure could be much higher," warns Kaspersky.in Russia, but the overall figure could be much higher," warns Kaspersky. SilentCryptoMiner deploymentThe malicious archive downloaded from the GitHub repositories contains a Python-based malware loader that is launched using PowerShell via a modified start script ('general. bat'). If the victim's antivirus disrupts this process, the start script delivers a 'file not found' error message suggesting that the user disables their antivirus and re-download the file. The executable fetches the second-stage loader only for Russian IP addresses and executes it on the device. The second stage payload is another executable whose size was bloated to 690 MB to evade antivirus analysis, while it also features anti-sandbox and virtual machine checks. The malware loader turns off Microsoft Defender protections by adding an exclusion and creates a Windows service named 'DrvSvc' for persistence between reboots. Eventually, it downloads the final payload, SilentCryptoMiner, a modified version of XMRig capable of mining multiple cryptocurrencies, including ETH, ETC, XMR, and RTM. The coin miner fetches remote configurations from Pastebin every 100 minutes so it can be updated dynamically. For evasion, it is loaded into a system process like 'dwm. exe' using process hollowing and pauses mining activity when the user launches monitoring tools like Process Explorer and the Task Manager. Although the campaign discovered by Kaspersky primarily targets Russian users, the same tactics may be adopted for broader-scoped operations that also deliver higher-risk malware like info-stealers or ransomware. Users should avoid downloading software from URLs in YouTube videos or descriptions, especially from smaller to medium-sized channels that are more susceptible to scams and blackmail.
Go Back to All Posts
Trending Now - TOP 100
1
Why Africa’s Mineral-Rich Countries Stay Poor: The Hidden Truth Behind Cobalt, Gold, and the Resource Curse, and Profit Shifting.
2
Crystal Palace stunned Liverpool to win the Community Shield
3
More than 50k Russian troops have deserted war from Ukraine
4
Michelle Obama Says America “Ain’t Ready” for a Woman President: Candid Remarks on Kamala Harris Loss and Gender Bias in 2025.
5
MIT Study Reveals AI's Fatal Flaw: Why ChatGPT Still Can't Understand 'No.
6
Why Your Phone Screen Is Shaking: Causes, Fixes, and Prevention Tips
7
Introducing Runfarbiz Network TV Global News software 2026
8
Jeff Bezos Reclaims No. 3 Richest Title From Sergey Brin After Amazon Store Closures
9
Best Music Affiliate Program This 2026 For Musicians.
10
Germany's Air Power Pivot: Inside the 20 New Eurofighter Typhoon Order
11
Elon Musks SpaceX to invest in xAI From $2 billion funding to $113 billion valuation.
12
Aliko Dangote Became The Richest Black Man In The World — And Now He Plans To Invest $1B In Industrial Projects In Zimbabwe.
13
Kampala Traffic Jam Continues To Be Dominated By Bodaboda Riders & Taxis Amidst Coming Events.
14
Acidic Vokoz plans another major concert
15
ARSENAL TO SIGN MADUEKE FROM CHELSEA
16
WordPress Settings Required For Any Good Website Development And Clean User Interface
17
Types of Hacking Methods That Are Popularly Being Used By Hackers.
18
Man United receive key Marcus Rashford transfer exit 'approval' as £44.8m enquiry made
19
SPORTS: All transfer rumors
20
The health benefits of eating sugarcane on daily basis
21
Ugandans spend Shs 55bn a day on TikTok data - Report
22
YOU CAN CONTACT SYPHILIS IN YOUR EYES IF YOU ENGAGE IN THESE THREE THINGS.
23
What Is Agood Webhosting ?
24
Do These Simple Steps To Stop Mustarbation Addiction.
25
Kalaki Leaders Embark On Benchmarking Tour To Revive Education Standards At Top-Performing VH Public School
26
UPDF has disqualified More than 60000 Applicants In Intitail Phase Screening.
27
Runfarbiz Related Premium Offers Now Includes Investment, Subscription For Voice, Data & Airtime Bundles Options Updated.
28
Tulus Biography Details And Music Of The Artist
29
We are now operating on both Ads revenue Model and Subscription Offers Just like Spotify, TikTok, Deezer, Apple Music , Mdundo, Boomplay, YouTube Music, Facebook Streams , Latest Runfarbiz Network system Upgrade.
30
Fintechs Dominate Africa's Top Startup Valuations in 2025: Flutterwave, OPay, and Wave Lead the Unicorn List.
31
Crazy Things Awife May Do To Mess Up Her Relationship
32
Solomon Kampala, Son of Bobi Wine, Engages Mexican Partner Helen Jaquez in Stunning Lakeside Proposal
33
Africa aviation industry, Isaac Balami University of Aeronautics and Management, IBUAM, first aeronautics university Africa.
34
Billionaires Elon Musk and Mark Zuckerberg almost ended up in a cage fight over their competing social media platforms.
35
Protect your soul, The world isn’t worth it.
36
Iran holds state funeral for military leaders killed in Israel conflict.
37
NRM Party Primary Elections Has Failed UpTo Ten Ministers , Report Confirmed by Electoral Commission Uganda.
38
The tech world was left stunned when Perplexity, the $18 billion AI startup led by Indian-origin CEO Aravind Srinivas, made an audacious $34.5 billion cash offer to acquire Google Chrome.
39
Nigerian researcher develops wireless charging tech for electric vehicles.
40
Official Digital Transformation Update From Runfarbiz Network Admin, Try To Read To The Last Paragraph
41
Two Suspected Ugandan Rebels Killed in Kampala Explosion.
42
A comprehensive biography of Raila Odinga, exploring his journey from political detainee to Prime Minister, his five presidential bids, and his complex legacy in shaping modern Kenya.
43
Trump Health 2025 Perfect MRI No Idea What Body Part Was Scanned, Full Story.
44
Billionaire Telegram Founder Leaves His $14 Billion Fortune to the 100+ Children He’s Fathered—Which Means $132 Million for Each Lucky Gen Alpha Kid.
45
The landscape of modern warfare is on the brink of a seismic shift, and China is at the forefront of this transformation.
46
Uganda Secures Over $2 Billion in World Bank Financing to Bolster Development.
47
Assistant referee Peter Kabugo passes away during sports club Villa match against UPDF
48
The Opposition Claims Hundreds Of Tanzanian Protesters Around 700 Already Dead.
49
Uganda Police Ban Campaign Processions and Ambulance Misuse as Bobi Wine Launches Kampala Campaigns in Kawempe | 2026 Elections.
50
Exposed Tricks How Some Financial Credit Institutions In The Names Of Money Lenders Are Stealing From Poor Ugandans .
51
Russia Begins Production of Advanced Oreshnik ICBM: A New Era in Strategic Capabilities.
52
Uganda’s New Law Allowing Military Trials for Civilians.
53
Iran-Israel War: Origins, Casualties, Global Impact, and Future Projections.
54
Qatar, UAE, Saudi Arabia, and other Gulf nations have shut down airspace amid rising tensions, causing massive flight cancellations and travel chaos. Latest updates here.
55
Why J Donald Trump Is Still Dominating American Politics
56
Mdundo Temporarily Blocked My Music Page After Hitting 1 million Streams Plus, My 5 million Uganda Shillings Will be losts .
57
_biography_–_the_rising_star_in_the_music_industry..jpeg)
DAX (Daniel Nwosu) Biography – The Rising Star in the Music Industry.
58
UPDF Bids Farewell to Over 600 Retirees in Nationwide Ceremonies.
59
Runfarbiz Network Improved Streaming Features Includes The Following.
60
TotalEnergies Sued in Uganda Over Unpaid Bill for Toxic Fuel Depot Cleanup in Kampala.
61
Six Dangerous Diseases You Can Catch Through Kissing _What You Need To Know.
62
Daily USSD Codes for MTN UG and Airtel UG that may assist you when having some Emergencies.
63
VINKA AND FIK FAMAICA TO LEAD MUBs GALA
64
Top Most Corrupt Institutions Made To Control Human Race Under The Financial Matrixs They Are Not Telling You.
65
President Yoweri Museveni has promised to address two critical needs in Obongi District—electricity and better roads
66
Singer Daudi Mugema dies in Gulu
67
Microsoft has unveiled their new Copilot AI model
68
Uganda and Kenya Assure No War Over Indian Ocean Oil Dispute , Museveni Remarks, Mudavadi Response & EAC Diplomacy 2025.
69
Antoine Semenyo £65m Release Clause Active in January: Man City, Liverpool & Spurs Monitoring Bournemouth Star.
70
UGANDA SIGNS BILATERAL AIR SERVICE AGREEMENT WITH OMAN.
71
SFC soldier shoots three dead in Agago
72
REPORT REVEALS ALARMING HUMAN RIGHT ABUSES IN KARAMOJA MINING SECTOR.
73
The Secret Life of Squirrels: A Tale of Love, Loyalty, and Forests in the Making.
74
See why your always having sex on dreams, Secrets Exposed.
75
Bebe Cool Announces Release of New Single, ‘Circumference’
76
SEE NAMES OF UGANDANS SHORTLISTED FOR GOVERNMENT PAYROLL JOBS AS HEAD TEACHERS, DEPUTIES IN KCCA SCHOOLS.
77
Uganda and Kenya Harmonise SGR Standards: Land Acquisition Accelerates for Malaba-Kampala Railway Project.
78
Auditor-General Demands Shs2 Trillion Forensic Tax Audit on Uganda Telecom Companies Over Revenue Discrepancies.
79
British firm discovers gold worth over $5B in western Kenya.
80
Arsenal Eye Move for Liverpool Wonderkid Joshua Abe | 15-Year-Old Right-Back Transfer News.
81
U.S. President Donald Trump recently expressed admiration for Pakistan.
82
GOVERNMENT OF UGANDA TO RECRUIT OVER 2800 TEACHERS AHEAD OF NEW TERM.
83
UPC's Jimmy Akena Vows No Space for NRM in 2026 Elections: Uganda People's Congress Resurgence Ahead of General Polls.
84
Bunyoro Kingdom Rejects UCDA Rationalization, Calls for Increased Funding
85
CDF Kainerugaba On Behalf Of UPDF Is Planning To Reshuffle Their Generals Like GEN Elwelu.
86
Pakistan Tightens Cash Dollar Sales in Bid to Curb Outflow and Support Rupee.
87
H.E Yoweri Kaguta Museveni Is The Most Concerned Ugandan Patriot.
88
Kylian Mbappé Breaks Messi Record: Youngest to 400 Career Goals Since Pelé at Age 26.
89
25 Motivational Tips & Quotes that shall Inspire You.
90
Why Bobiwine Has Been Failing The Political Presidential Elections In Uganda.
91
4 THINGS MOSQUITOS DON'T LIKE, WHICH WILL MAKE THEM RUN FROM BITTING YOU.
92
Causes and prevention of high blood pressure
93
Stop praying like this, You will summon demonic forces from abyss without knowing
94
How to stay the happy life without money in your pocket
95
![Boywisky music official ft Bill Ranka Uganda have already released a new song titled "Yom Cwinya"](/rfpro/posts/boywisky_music_official_ft_bill_ranka_uganda_have_already_released_a_new_song_titled_"yom_cwinya".jpg)
Boywisky music official ft Bill Ranka Uganda have already released a new song titled "Yom Cwinya"
96
UPDF SALUTS SEVEN GENERALS , AWAITING THEIR OFFICIAL RETIREMENT
97
HOW UGANDAN'S ENERGY SECTOR WILL PERFORM IN 2026.HOW UGANDAN'S ENERGY SECTOR WILL PERFORM IN 2026.
98
Cloudflare Outage November 18 2025: Why the Internet Broke and How Cloudflare Actually Works Behind the Scenes.
99
In tit-for-tat, Zambia suspends Kenya Airways flights over country’s denial of access to Zambia Airways
100
Museveni Urges Ugandans to Embrace Swahili for Commerce, Pledges 100 Million to Swahili Sacco
RECENT CONTENTS
Goyo hustle by FreshBoy dabless rapper ft vanny kanotty_-_Asassin Skylord is out
FreshBoy Dabless, alongside rising artists Vanny Kanotty and Assassin Skylord, has officially released a brand-new hit titled “Goyo Hustle.” The track delivers a powerful message centered on determination, hard work, and the everyday grind for success. “Goyo Hustle,” which translates to hustling, reflects the artists’ real-life experiences and ambitions in the music industry. The collaboration showcases unique styles, energetic delivery, and a strong connection to street culture. Fans and music...
Read More
Biography Of The Chainsmokers
The Chainsmokers are an American electronic music duo comprised of Alex Pall, born on May 16, 1985, and Drew Taggart, born on December 31, 1989. The two came together in New York City in 2012 after Alex, who had been working as a DJ, was introduced to Drew through a manager. They quickly bonded over their shared passion for dance music and began producing original tracks and remixes, initially gaining...
Read More
Irans Supreme Leader Confirmed Killed By Israels Joint Attack With America
On February 28 and into March 1, 2026, Israel and the United States launched a coordinated joint military operation against Iran, marking a significant escalation in long-running tensions over Tehran’s nuclear and missile programs. The offensive involved extensive airstrikes by Israeli forces and participation by U.S. military assets targeting Iranian military infrastructure, command centers, missile sites, air defenses, and political leadership compounds. Several senior Iranian officials and commanders were reported...
Read More
WestLife - Biography And Their Music Journey.
Westlife, the Irish pop group, came together in Dublin in July 1998 when Shane Filan, Kian Egan, and Mark Feehily, who had been schoolmates from Sligo, joined forces with Nicky Byrne and Brian McFadden following auditions to complete the original five-member lineup. by Louis Walsh and initially supported by Ronan Keating, they quickly signed a >
Managedajor record deal and burst onto the scene in 1999 with their debut single...
Read More
Niki Biography And Music – Indonesian Singer-Songwriter, Global Pop R&B Artist, Career and Music Journey
Nicole Zefanya, known professionally as Niki, is an Indonesian singer-songwriter born on January 24, 1999, in Jakarta, Indonesia. She is recognized for her alternative pop and R&B sound and is signed to the record label 88rising. Over the years, she has gained global recognition for her songwriting and musicianship, building an international audience while living and working in the United States.
Niki began developing her musical skills at a young age...
Read More
Afgan Music And Biography Of The Artist – Indonesian Singer, R&B Artist, Albums, Career Journey, and Music Evolution.
Afgansyah Reza, known professionally as Afgan, is an Indonesian singer and actor born on May 27, 1989, in Jakarta, Indonesia. He is widely recognized for his smooth pop and R&B style and has become one of Indonesia’s most prominent contemporary male vocalists.
He grew up in a musical Muslim family of Minangkabau heritage and is the second of four children.
Interestingly, despite later becoming famous for his voice, he never underwent...
Read More