Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Don't click on this old Discord invite link! It could be malware!
Most of us have done it before: Trying to use an old link to access a website or service. That familiar old link gets you where you need to go — but with Discord , that old link can take you to a world of malware .
Old Discord links may be spreading malware
It's strange to think that a seemingly harmless Discord link could lead you to dangerous malware.
But that's exactly what security researchers at Check Point discovered when they uncovered a massive malware campaign that was actively exploiting old Discord invites.
Discord invites allow you to go directly to the server the invite was sent from and log in. The invite code sent to you contains a unique identifier, which allows you to access the server, with different levels of access set by the sender (such as temporary, permanent, etc.).
Currently, on Discord, there are special 'Level 3' servers with enhanced features that allow for faster growth, such as more invites, higher capacity, and custom links. While regular Discord invites are randomly generated (and therefore unlikely to reappear), hackers are exploiting these old and potentially expired custom links and reusing them to target malicious servers hosting malware.
So when you click on one of the repurposed malicious links, you land on a Discord server that looks and feels authentic, but prompts you to verify your identity. From there, the link launches a version of the ClickFix malware, which displays a message saying the CAPTCHA failed, instructing you to verify it manually.
The 'manual verification process' requires you to run a Windows command to launch a PowerShell script, which then downloads and installs the malware. Interestingly, the Check Point team found that the script used to download and install the malware is not detected by most antivirus and antimalware suites, making it even harder to avoid an attack like this.
What malware does the fake Discord link download?
Once the script is executed on the victim's machine, it attempts to download and install extremely dangerous malware. For example, AsyncRAT is a powerful remote access Trojan that can give an attacker control over the victim's machine, Skuld Stealer is an infostealer that targets user data and cryptocurrency wallets, and ChromeKatz attempts to steal browser cookies and other information.
Once installed, this combination of malware will allow widespread access to any device, steal highly sensitive data, etc.
How to avoid Discord links containing malware
First, avoid all old Discord invite links. Any link sent to you that has been sitting in your inbox for a while without being used should be discarded - consider it a potential hazard.
Second, extend those suspicions to any Discord invite links hosted on websites, forums like Reddit, etc. Any link embedded on such a site is likely to be considered dangerous, so avoid them.
Finally, if you click on a Discord invite link and it asks you to verify your identity again, that's another red flag and a good reason to close the page immediately. Any Discord server that asks you to run a specific command from the Run dialog in Windows is also extremely bad news and should be avoided at all costs.
Finally, make sure your antivirus or antimalware software is up to date. The Discord malware script is detected by very few antivirus engines, but having an up-to-date tool will help protect you from any malware that is installed – although no antivirus is perfect!
Micah SotoYou should read it
- Instructions on how to connect Discord and Xbox One
- 6 best bots to improve Discord server
- How to create the Discord bot on the Raspberry Pi
- Is it safe to use Discord?
- How to add a bot to the Discord server
- How to join Discord voice chat on PS5
- ChatGPT will come to Discord chat
- How to Format Text as Code in Discord
May be interested
- How to add a bot to the Discord server
discord is a great way to chat with others. if you run your own discord server, you'll most likely want to install the bot at some point. the bot can help you automate censorship, add points and leaderboards, listen to music with others, and more. - ChatGPT will come to Discord chatdiscord is one of the most popular messaging platforms, especially for group chats. like almost every recent service, discord is now expanding its ai and chatbot features.
- Warning: New DISGOMOJI malware uses Discord emoji to steal data!first discovered by security research firm volexity, disgomoji malware can use discord emoji to execute commands on infected devices.
- How to prevent Discord from hanging, freezing in Windows 10/11you're in your discord server, playing games, chatting with friends, etc., and then discord crashes or freezes at a critical moment.
- How to change Discord language into Vietnamesewith vietnamese interface, using discord will not be too complicated and much easier.
- Steps to customize Discord interfacediscord has a variety of settings available that you can tweak to customize the look and feel, such as switching to a light theme, making messages more compact, adjusting color saturation, and more.
- How to fix Discord error does not openthe discord not opening issue has become one of the biggest problems for gamers who use this app as their main communication tool. this is a frustrating problem, but the fix is something that many people can easily do.
- Ways to fix audio problems in Discordwhile it was originally built for discord, it has now evolved into a networking platform for all types of communities. whether it's for watching livestreams or playing voice games with others, audio is a key element of discord.
- 5 easy ways to know if someone has blocked you on Discordare you worried that a friend has blocked you on discord? even though discord doesn't tell you directly, there are easy ways to tell if someone has blocked you on discord. you can even see if you've been blocked without sending a direct message! this tipsmake article covers all the signs that you're blocked on discord, whether you're using a computer or the mobile app.
- Steps to permanently delete Discord accountdiscord is a great app that allows you to chat with your friends and meet like-minded people. but it's not for everyone. if you want to get out of discord, you'll wonder if it's possible to delete your discord account.
System
- Top software to show hidden files in USB you should not miss
- Learn About Windows Maintenance Tool: Free Tool That Solves the Most Common Windows Problems Easily
- How to Take Advantage of the Performance Tab in Task Manager
- Microsoft: Windows 10 ESU works even if Windows 11 is not supported
- How to Generate a Windows System Performance Report
- How to change the indicator position on the Windows 11 screen
Top software to show hidden files in USB you should not miss
Learn About Windows Maintenance Tool: Free Tool That Solves the Most Common Windows Problems Easily
How to Take Advantage of the Performance Tab in Task Manager
Microsoft: Windows 10 ESU works even if Windows 11 is not supported
How to Generate a Windows System Performance Report
How to change the indicator position on the Windows 11 screen