Cybersecurity researchers have shed light on an adware module that purports to block ads and malicious websites, while stealthily offloading a kernel driver component that grants attackers the ability to run arbitrary code with elevated permissions on Windows hosts.
The malware, dubbed HotPage, gets its name from the eponymous installer (“HotPage.exe”), according to new findings from ESET.
The
Source: thehackernews.com