Threat researchers at cybersecurity firm Cyble found six fake Zoom sites offering applications that will download Vidar Stealer malware.
Vidar is an Information Stealing malware that steals the victim’s banking information, saved passwords, IP addresses, browser history, login credentials, and crypto-wallets. This stealer has links to the Arkei stealer.
These sites redirect to a GitHub URL in the backend to download the malicious application.
Vidar Stealer Targets ZOOM User