It is considered to be a part of a GoldFactory campaign that began in June 2023 with Gold Digger.
GoldPickaxe prompts the victim to record a video as a confirmation method in the fake tool.
We hypothesize that the cybercriminals are using their own devices to sign in to bank accounts.
Threat actors such as GoldFactory have well-defined processes, operational maturity, and demonstrate an increased level of ingenuity.
Their ability to simultaneously develop and distribute malware variants tailored to different regions shows a worrying level of sophistication.
source: www.techworm.net
