Ethical Hacking News
The FBI has issued a warning about fake online file converters that push malware, leading to incidents such as ransomware. Cybercriminals are creating websites that promote free document converters, download tools, or file merging tools, which can load malware onto computers and gain remote access to infected devices.
FBI officials have warned the public about fake online file converters used by cybercriminals to steal sensitive information and deploy malware. Cybercriminals create websites promoting free document converters, download tools, or file merging tools that load malware onto computers. These scams often mimic legit URLs and can lead to ransomware attacks like REvil and BlackSuit. Users should be cautious when using online file converters or download tools and analyze any resulting file for potential malware. The FBI advises individuals to report instances of this scam to IC3.gov, do research before downloading programs, and avoid unknown sites.
FBI officials have issued a warning to the public about the growing threat of fake online file converters that are being used by cybercriminals to steal sensitive information and deploy malware on unsuspecting victims' devices. The warning comes after an increasing number of reports were received by the FBI Denver field office about these types of scams, which involve free online document converter tools that load malware onto computers, leading to incidents such as ransomware.
The FBI says that cybercriminals are creating websites that promote free document converters, download tools, or file merging tools. These websites may claim to convert one type of file to another, such as a .doc file to a .pdf file, or combine files, like joining multiple .jpg files into one .pdf file. The suspect program might claim to be an MP3 or MP4 downloading tool. While these online tools work as advertised, the resulting file may also contain hidden malware that can be used to gain remote access to the infected device.
According to Vikki Migoya, the Public Affairs Office for FBI Denver, people are reporting these scams to IC3.gov, with one public sector entity reporting the scam in metro Denver in the last three weeks. The scammers try to mimic URLs that are legit – so changing just one letter, or 'INC' instead of 'CO'. Users who in the past would type 'free online file converter' into a search engine are vulnerable, as the algorithms used for results now often include paid results, which might be scams.
Cybersecurity researcher Will Thomas shared some sites that claimed to be online document converters, such as docu-flex.com and pdfixers.com. While these sites are no longer available, they distributed Windows executables named Pdfixers.exe [VirusTotal] and DocuFlex.exe [VirusTotal], which are both detected as malware.
A cybersecurity researcher known for tracking the Gootloader infection also reported in November about a Google advertising campaign that promoted fake file converter sites. These sites pretended to convert your files but instead caused you to download the Gootloader malware. The JavaScript file is Gootloader, a malware loader known for downloading additional malware, such as banking trojans, infostealers, malware downloaders, and post-exploitation tools, like Cobalt Strike beacons.
The FBI warns that these types of scams are becoming increasingly sophisticated and can lead to full-blown ransomware attacks. In the past, attacks like those by REvil and BlackSuit have resulted in devastating consequences for victims. The FBI advises users to be cautious when using online file converters or download tools and to analyze any resulting file from the site, as if they are an executable or JavaScript, they are most definitely malicious.
The FBI is urging people to report instances of this scam to IC3.gov. It is also recommending that individuals do their research before using online file converters or download tools and to check reviews before downloading any programs. If a site is relatively unknown, it is better to avoid it altogether.
In conclusion, the FBI warns that fake online file converters can push malware onto devices, leading to incidents such as ransomware. The warning comes after an increasing number of reports were received by the FBI Denver field office about these types of scams. It is essential for users to be cautious when using online file converters or download tools and to take steps to protect themselves from falling victim to these types of attacks.
Related Information:
https://www.ethicalhackingnews.com/articles/FBI-Warns-of-Fake-File-Converters-that-Push-Malware-ehn.shtml
https://www.bleepingcomputer.com/news/security/fbi-warnings-are-true-fake-file-converters-do-push-malware/
https://www.msn.com/en-us/news/us/fbi-warns-about-online-file-converter-sites-which-install-malware-steal-private-information/ar-AA1BsODO
Published: Sun Mar 23 15:55:53 2025 by llama3.2 3B Q4_K_M
