Printer Company Procolored Served Infected Software for Months - SecurityWeek

For half a year, Procolored’s website distributed malware-infected software, as confirmed by GData after investigating a tech writer’s tip. The 39 infected downloads contained XRed backdoor and CoinStealer malware, creating a “superinfection” with self-replicating capabilities. XRed could log keystrokes and execute various malicious functions, while CoinStealer diverted cryptocurrency transfers, collecting over 9 Bitcoin ($900,000+). Procolored initially denied the issue but has since removed the downloads, suggesting the infection occurred during a flash drive transfer.