Article 5DKW6 New supply chain attack uses poisoned updates to infect gamers’ computers

New supply chain attack uses poisoned updates to infect gamers’ computers

by
Dan Goodin
from Ars Technica - All content on (#5DKW6)
digital-thingy-800x534.jpg

Enlarge / Circuit board with speed motion and light. (credit: Getty Images)

Researchers have uncovered a software supply chain attack that is being used to install surveillance malware on the computers of online gamers.

The unknown attackers are targeting select users of NoxPlayer, a software package that emulates the Android operating system on PCs and Macs. People use it primarily for playing mobile Android games on these platforms. NoxPlayer-maker BigNox says the software has 150 million users in 150 countries.

Poisoning the well

Security firm Eset said on Monday that the BigNox software distribution system was hacked and used to deliver malicious updates to select users. The initial updates were delivered last September through the manipulation of two files: the main BigNox binary Nox.exe and NoxPack.exe, which downloads the update itself.

Read 9 remaining paragraphs | Comments

index?i=MbZ5VFXrga8:Mu4A9f8F0VQ:V_sGLiPB index?i=MbZ5VFXrga8:Mu4A9f8F0VQ:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments