A new malware variant dubbed UMBrao is making headlines in cyberspace, and it targets the popular e-commerce platform Etsy.
Unveil the UMBBAO Trojan-Horse Hacker Trojan (UMBRAHO) v3.0.
Uncover the Umbrao Trojan-Trojan Horse (UBTHL) V3.1.
Umbraos attack is targeting the Etsy platform, with the exploit pushing a powerful backdoor that is the same as a previously reported Umbreak exploit.
The exploit is based on the UB-Trok, a new variant of a malware family called UMB-Troj.
As a result of UMBreak, the UMBraos v4.0 exploit was released to the public on Tuesday, and Ubraos is one of the earliest known exploits for UMBBTrojan.
UmbRao is a Trojan that exploits a weakness in the WordPress Plugin Framework that allows attackers to download malicious files and perform remote code execution (RCE) attacks.
Once the payload is installed, the UAB-Trook v2.1 exploit can execute commands on vulnerable WordPress plugins, which can be used to gain access to the victim’s computer.
UB-Holes exploits have previously been used by UAB-Umbral, which was also released to users of Etsy last month.UMBRao is a “more sophisticated variant of UABBTroj,” according to the company’s security advisory.
It is a more aggressive exploit than the other UAB Trojan variants, and is capable of downloading a payload from the vulnerable WordPress plugin institution without requiring any user interaction.
UUBRAO has been known to target other popular ecommerce platforms, including Amazon, WhatsApp, Instagram, Microsoft and Twitter.
UUBBAO also targets the popular Amazon Marketplace.
“This Trojan is being actively exploited by a wide range of criminal groups,” the company says on its advisory.
“Its functionality is not yet fully understood and we will continue to monitor the situation and release a fix as soon as we are able.”