This is done using phishing emails targeted on behalf of government agencies. A potential victim downloads a ZIP archive containing two files: one is a harmless fake document with the extension DOCX PDF or XLSX, and the other is a malicious document, usually with a double extension – pdf.lnk.
Clicking this shortcut will download the PowerMagic backdoor to your computer or smartphone. This malware takes commands from a remote folder in the public cloud and steals data from the device and transfers it to the cloud.
At the same time, such a cyberattack is decisive: the PowerMagic virus not only remains in the system even after restarting the infected gadget, but is also used to deploy the powerful CommonMagic malware platform, which consists of several modules. This program can play files from USB devices, takes a screenshot every three seconds and sends it to the operator.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
