Consider following on social media!
Quick note: if you’re viewing this via email, come to the site for better viewing. Enjoy!
Photo by Abdel Rahman Abu Baker, please support by following @pexel.com
Ducktails is not going to have a good spin after you read about this one. So you may have looked at the title and thought that you are going to read a nice story about Ducktails and have those memories of being a child sitting in front of the TV on weekday afternoons and Saturday mornings come rushing back to you.
Remembering the time sat through your watch list of favorite cartoons until you got to the main event. However, sadly, you’re not going to have that moment. We have come across some information that will have your head spinning including your tail.
So, as usual, we’ll be covering what the attack is, who is using it, the functionality, and effects upon release, and what are some ways to protect yourself from this being the last Saturday morning for your peace of mind.
Photo by Ekaterina Belinskaya, please support by following @pexel.com
The Attack
What has you spinning around like a record from the 80s? Great that you asked, the intruder in question is called “Ducktail”, and no, it’s not “Duck Tales”. As mentioned earlier, your sweet childhood is here to be exploited, not rewarded.
Ducktail is what is known as “adware”, adware for those who may not know is malware software that secretly installs itself on the victim’s device and pops up unwanted advertisements.
No, your YouTube account doesn’t have adware, that’s just YouTube being god-awful. Speaking of god-awful, did you know that ducktail was a hairstyle? I’ll take the adware, please.
Z-daddy: It’s not that simple, and most of the time it’s untraceable.
Photo by Athena, please support by following @pexel.com
Who Can It Be Now
As far as who has been making use of ducktails to make other people’s lives interesting, there have been no names. However, it is believed that its origins trace back to Vietnam a few years back.
Enjoy the read so far? Why don’t you consider subscribing so you can keep up to date?
Ed: It was a scam.
Sue: Oh, well, Scriptingthewhy could’ve told you about that.
Photo by olia danilevich, please support by following @pexel.com
That Sinking Feeling
Are you confused about how something like this works? Don’t worry, I have you on that front. The Ducktails adware pairs with NodeStealer and targets Meta business and Facebook (also called Meta) accounts and for lack of better a term, hi-jack the accounts.
Once access is gained, social engineering can begin, where multiple victims can be approached through various platforms like Facebook, LinkedIn, and WhatsApp, even including freelancer platforms like Upwork.
So, yeah, once in, everyone is getting a spicy meatball, and no one is off the menu. Ducktail also has another way in due to performing what is called “search engine poisoning”, this is the dark art of tricking a search engine like Google into ranking webpages to appear number one so they can further distribute their malware.
The overall is you’re being lured into giving your information. These lures involve bogus posting on Upwork, Freelancer, Facebook ads, LinkedIn mailing, and even those “Disney is hiring for Data Analytics 100% remote position” ads you see on YouTube. Disney, like any other job, wants your butt in a seat on-site. Don’t fall for this.
Back on track, so once the adware gets onto your computer and begins to steal information, this includes items like saved session cookies from the browser to then tailor ads more personal to the victim. So basically, you have in your search history lawn mowers, it finds that and crafts you “lawn mowers for cheap or even free”, you click, and pop goes the weasel.
The good news is the rest of your collected information doesn’t go to waste however, it has been known to be sold on the dark web for about $15 USD to about $340 USD depending on who you are. You’re still worth something, whether you believe it or not.
Photo by Turong Chopper, please support by following @pexel.com
The Prevention
So it’s clear, you don’t want your tail like your life spinning out of control. Well, don’t worry, I have you on that one. Everyone thinks that cybersecurity is using cutting-edge technology to stop the bad guys when in reality, it’s just practicing some good fundamental habits.
A simple way of thinking about a form of protecting yourself is when contacted by anyone you don’t know and they request you visit a link, uh treat it like the front door of your house, and don’t open it. I hope you wouldn’t open the door all the way for a complete stranger so the same applies here.
Always keep a lookout when visiting websites as if you look in your browser search bar and to the left, if the little lock symbol is not locked then that means the site is not secure. This means everyone else can see your transactions and you don’t want that.
When downloading software, it is always best to download from the official site and not a third party as downloading from a third party may contain malware and other nasty software.
Having your operating system and anti-virus up to date is a must because patches for vulnerabilities are released often and further help protect your computer. Always remember, your tail is meant to twerk for a paycheck, not twerking because you lost one.
Photo by Pixabay, please support by following @pexel.com
Made it this far and found this to be entertaining? Then a big thanks to you and please show your support by cracking a like, sharing this with whomever, scripting a comment, or plug-in to follow.
Would like to give sincere thanks to current followers and subscribers, your support and actions mean a lot and has a play in the creation of each script.
Do you feel like there is something I may have missed on Ducktail? Script a comment below.
