sb-au logo
Story image

Huge growth in malware connected to popular musicians - Kaspersky

Kaspersky detected a 39% rise in attacks (attempts to download or run malicious files) under the guise of nominees’ work in 2019, compared to 2018. Ariana Grande, Taylor Swift and Post Malone were attackers’ favourites, with these nominees’ names used most often in 2019 as a disguise for malware.

The popularity and widespread availability of modern music is a powerful lure for malicious activity: criminals use popular artists’ names to spread malware hidden in music tracks or video clips.

Kaspersky researchers analysed Grammy 2020 nominated artists’ names and song titles for malware. As a result, Kaspersky found 30,982 malicious files that used the names of artists or their tracks in order to spread malware, with 41,096 Kaspersky product users having encountered them.

Analysis of the nominated artists showed that the names of Ariana Grande, Taylor Swift and Post Malone were used most to disguise malicious files, with over half (55%) of detected malicious files named after one of the trio.

The number of attempts to download or run the files containing names of these pop stars also grew significantly for almost all artists in the research.

The connection between the rise in popularity and malicious activity is very evident in the case of newer artists such as Billie Eilish.

The number of users who downloaded malicious files with her name has risen almost tenfold compared to 2018 – from 254 to 2171. In addition, the number of unique distributed malicious files rose from 221 to 1,556 during the same period.

A nomination for a prestigious award affects seems to correlate with an increase in malicious activity connected to the artist’s name. However, this is not necessarily the case for more established artists such as Lady Gaga, whose name use also experienced a rise in attacks in the past year.

Kaspersky also analysed which records and songs received the most attention from cybercriminals. Post Malone’s ‘Sunflower’, Khalid’s ‘Talk’ and Lil Nas X’s ‘Old Town Road’, led the way for songs with the most malware attacks.

“Cybercriminals understand what is popular and always strive to capitalize on that,” says Kaspersky security analyst Anton Ivanov.

“Music, alongside TV shows, is one of the most popular types of entertainment and, as a result, an attractive means to spread malware, which criminals readily use.

“However, as we see more and more users subscribe to streaming platforms, which do not require file download in order to listen to music, we expect that malicious activity related to this type of content will decrease,” says Ivanov.

Story image
Is the 'fast follower' mentality holding back anti-money laundering in Australia?
The decade-old rules-based systems cannot keep up with sophisticated cyberattacks and money laundering threats on their own, writes FICO financial crimes leader for APAC Timothy Choon.More
Story image
Kaspersky ICS CERT joins FIRST global threat intelligence forum
FIRST was founded in 1990, and its members come from 95 countries across Oceania, Asia, Europe, the Americas, and Africa.More
Story image
Rate of ransomware attacks in Australia well above global average — report
Over two-thirds (67%) of Australian organisations have suffered a ransomware attack in the last 12 months — 10 percentage points above the global average of 57%.More
Story image
DDoS attacks surge, becoming more sophisticated
After doubling from Q1 to Q2, the total number of network layer attacks observed in Q3 doubled again — resulting in a 4x increase in number compared to the pre-COVID levels in the first quarter. More
Story image
Cybermerc launches AU cyber threat intelligence platform, AUSHIELD
So far Australian National University, Fortinet, Anomali, Elastic, Vault Cloud, and startups SecureStack and Countersight have joined the project.More
Story image
Cyber-attackers target COVID-19 vaccine supply chain in sweeping phishing campaign
IBM’s Security X-Force, a task force created in the early days of the pandemic with an aim to combat cyber-attacks related to potential vaccines’ supply chains, released details on a coordinated effort to disrupt the COVID-19 ‘cold chain’.More