Kanye’s upcoming album is a scam magnet, Kaspersky finds

“Donda” will be out Aug. 26, and scammers are taking gain of lover anticipation by seeding the online with malicious fake downloads.

istock-1225375740.jpg

Graphic: iStock/Melpomenem

With Kanye West’s newest album, “Donda,” owing out imminently, cybersecurity company Kaspersky has taken the time to examine whether cybercriminals were being taking gain of the buzz to spread malicious data files, a la “Black Widow.” It found that, when the range of frauds was not huge, they do exist and consider several different kinds.

It can be uncomplicated to see why cybercriminals would concentrate on album releases, movies, and other kinds of very anticipated media: It can be uncomplicated to slip malicious code into a download, and perhaps just as uncomplicated to trick another person into giving up particular details for a sneak peek. 

SEE: Protection incident response plan (TechRepublic Top quality)

In the case of Kanye’s newest launch, Kaspersky found fake downloads just like these found in the times quickly previous the launch of “Black Widow.” Two individual adware data files were being named by Kaspersky, Download-File-KanyeWestDONDA320.zip_88481.msi and Kanye West _ DONDA (Explicit) (2021) Mp3 320kbps [PMEDIA] __ – Downloader.exe. 

Along with the regular fake downloads, Kaspersky also observed several different fraud internet sites were being employing many solutions to trick folks into clicking malicious one-way links, furnishing particular facts and otherwise staying phished out of valuable particular details.

In just one case in point, Kaspersky said, “customers get a link to download the ‘album’, and are requested to take part in a survey and validate they are not a robotic.” Upon completion, customers are redirected to a internet site promising they can make money on bitcoin. “Of class, the link to the album hardly ever seems, and if customers drop for the offer you of getting to be a bitcoin millionaire and enter particular data, they may possibly drop their money and not get access to the album,” Kaspersky said. 

In speaking about frauds encompassing the “Black Widow” launch, Kaspersky security professional Anton V. Ivanov warned that fraudsters and cybercriminals enjoy to consider gain of buzz and exhilaration close to media releases and the inattentiveness that quite a few folks have when striving to discover a way to see (or listen to) it very first. 

“In their exhilaration, viewers become inattentive to the sources they use, and this is accurately what fraudsters profit from. These assaults are preventable, and customers ought to be notify to the web pages they go to,” Ivanov said. 

SEE: How to deal with passwords: Greatest methods and security recommendations (free PDF) (TechRepublic)

Kaspersky has several further recommendations for these hunting for recommendations on keeping protected from on the internet frauds: 

  • Only access articles from formal platforms like Apple’s Application Retailer, Google Enjoy, Spotify, Apple Television set, and so forth. Even though these web pages usually are not entirely guaranteed to be protected, Kaspersky said, they are checked and filtered, which lessens person possibility.
  • In no way simply click on a link without having checking the true URL by hovering a cursor in excess of it or extensive-pressing on a cellular device to open up a preview.
  • Even effectively-built phishing internet sites will have tells, Kaspersky said. Inbound links are frequently misspelled or redirected, so be absolutely sure to glimpse at URLs on any internet site you open up by way of an e mail or messaging link. 
  • Don’t open up data files you did not count on to get. If in doubt, get in touch with the e mail sender to validate it was them who despatched it.
  • Be absolutely sure that you have a trustworthy security remedy put in that can detect phishing and other perhaps malicious articles. 

Also see