Attackers use Skype to spread Liftoh trojan

By on

Countries in Latin America have been the primary targets in this campaign, researchers say.

Users receiving shortened URLs in Skype instant messages, or similar IM platforms, should be wary of a new trojan, called Liftoh.

So far, it has primarily infected users in Latin America according to Symantec researcher Rodrigo Calvo.

When targeted, victims receive a message in Spanish containing a shortened URL.

The messages masquerade as appearing from a Skype contact and contain a link to a photo.

If clicked, the link redirects users to, which is hosting a URL, which initiates a weaponized zip file containing Liftoh. The trojan is capable of downloading additional malware.

The malicious URLs have been clicked on more than 170,000 times, according to Symantec.

This article originally appeared at

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
In Partnership With

Most Read Articles

Log In

Username / Email:
  |  Forgot your password?