We observed significant volumes of malware hosted in Discord’s own CDN, as well as malware interacting with Discord APIs to send and receive data. The service also publishes an API, enabling developers to create new ways to interact with Discord other than through its client application. The growing popularity of the game-centric text and voice chat platform has not failed to draw the attention of malware operators.ĭiscord operates its own content delivery network, or CDN, where users can upload files to share with others. As we found during our investigation into the use of TLS by malware, more than half of network traffic generated by malware uses TLS encryption, and 20 percent of that involved the malware communicating with legitimate online services.ĭuring the timeframe of that research, we found that four percent of the overall TLS-protected malware downloads came from one service in particular: Discord. Threat actors who spread and manage malware have long abused legitimate online services.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |