I am sure that most of us have done this: tried to use an old link to reach a site or service. This old familiar link takes you where you need to go – but when it comes to discord, that old link can enter you into the world of malware.
That old discord link can be spread malware
It is wild to think that an innocent -looking discord link can direct you to dangerous malware.
But this is really on security researchers Check point It was found out when he discovered a huge malware campaign by actively exploiting old discord invitations.
A discord invited allows you to go directly to the server that it was sent and signed in. The invited code sent to you has a unique identifier that allows you to reach the server, with various levels set by the sender (eg temporary, permanent, and so on).
Now, on discord, special “level 3” servers with increased features that enable rapid growth, such as more invited, high capacity and pride link. While regular discord invitees are generated randomly (and are unlikely to re -appear), hackers are exploiting these old and potentially finished pride links and re -introducing them to the malicious server.
Therefore, when you click on one of the renovated malicious links, you land on a discord server that looks similar and feels authentic, but indicates you to verify your identity. From here, the link launched an example of clickfix malware, displaying a message stating that the captcha fails, directing you to verify manually.
The “manual verification process” requires you to run a Windows command that launchs a Powershell script, which, in turn, downloads and installs the malware. Interestingly, the Czech point research team found that the script used to download and install the malware became uncontrolled by most antivirus and antivore suits, which made it more difficult to avoid the attack of this nature.
Connected
This novel uses discord emoji to steal malware data
Who knew that emoji could be used for this?
What does the fake discord link download the malware?
Once the script is executed on your machine, it tries to download and install quite dangerous malware. For example, AsyncRat is a powerful remote access trojan that can give an attacker control over your machine, the Skuld Stealer is an infostealer that targets user data and crypto wallets, and Chromekatz tries to steal the browser cookies and other information.
Once installed, this combination of malware gives wide access to any device, steals very sensitive data, and more.
Connected
Why infostealer malware is my new biggest malware concern
Infostealer malware is everywhere, and it is particularly bad.
How to avoid discord link malware
First, avoid inviting all old discords. Any link sent to you that is dull for a while in your inbox, which you have not used should be abandoned – it is potentially dangerous.
Second, extend those doubts on any discord invite websites, reddit -like forums and otherwise hosted links. Any link can be considered embedded in a site, so avoid them.
Finally, if you click on a discord invite link and it asks you to re -create your identity, it is another red flag and is a good reason to close that page immediately. Any discord server or otherwise that tells you to run a specific command from the run dialogue in Windows is also very bad news and should be avoided at all costs.
Finally, make sure that your antivirus or antigyware suits are updated. I know that I wrote that the discord malware script was detected by very few antivirus tools, but having an up to date tool should help you protect from any malware installed – although no antivirus suite is right!
