Hackers Use 3D Files to Steal Your Data

Hackers have discovered a cunning method to pilfer data by leveraging 3D files.

The Threat

• Tool of Choice: Blender, a widely-used 3D creation software.
• Malware Used: StealC V2, capable of extracting data from:
• Browsers
• Wallets
• Email clients

The Method

1. Uploading Harmful Files:

   • Hackers distribute malicious files on platforms like CGTrader.
   • These files contain hidden Python scripts.

2. Automatic Execution:

   • When a user opens these files in Blender with the Auto Run feature enabled, the scripts execute automatically.
   • This leads to the download of additional malicious files onto the computer.

Previous Incidents

• Hackers have previously targeted gamers by impersonating reputable organizations.
• They employed similar tactics, such as:
• Concealing malware within documents.
• Utilizing stealthy methods to evade detection.

Blender's Warning

• Blender acknowledges the potential risks associated with Python scripts in 3D files.
• Key Point: These scripts can perform various actions, including data theft.

Safety Measures

• Disable Auto Run: Unless the file source is trusted.
• Targeted Systems: Hackers often aim for computers with powerful GPUs, which are more challenging to protect within virtual environments.