ADVISORY: SECOND LIFE SECURITY RISK
It has come to my attention that as of late, malicious actors are propagating viewers in group chats and other means to promote malware posing as SL viewers. These viewers claim to allow you to earn L$ by using them. The reality is, that the viewer is a trojan horse, a type of malware that disguises itself as a legitimate program, or a program that provides desired features or the sort. According to information on the viewer's operating procedure, the 'viewer' installation process has been modified to, once in a privileged (administrator) state, execute at least four malicious packages: CobaltStrike, a penetration testing (a type of tool used by white-hat (good) hackers to test systems against known exploits) tool that is used to check for attack vectors to install any of the three below: Trojan/Molotov.Reflo - a Remote Access Trojan. Quasar, another RAT, and: AsyncRAT, another RAT. Remote Administration Tools have legitimate purposes - as I for one use MobaXTerm, which fe