Dofoil

Attackers compromised an update server and replaced a popular BitTorrent client called MediaGet with a signed backdoored binary to spread a malicious cryptocurrency miner.

Impact

The attack could successfully taget over 400,000 PCs mostly in Russia, Turkey, and Ukraine.

Type of compromise

The attackers seem to have been able to compromise the publishing infrastructure, as well as the signing key of the package.

Feedback

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.