Hacker arrested for KMSAuto malware campaign with 2.8 million downloads www.bleepingcomputer.com/news/secu…
A Lithuanian national has been arrested for his alleged involvement in infecting 2.8 million systems with clipboard-stealing malware disguised as the KMSAuto tool for illegally activating Windows and Office software.
The 29-year-old man was extradited from Georgia to South Korea following a related request under Interpol’s coordination.
According to the Korean National Police Agency, the suspect used KMSAuto to lure victims into downloading a malicious executable that scanned the clipboard for cryptocurrency addresses and replaced them with ones controlled by the attacker - known as ‘clipper malware’.
