DarkGate malware spread through malicious Pidgin plugin

Attacks involved the malicious 'ss-otr' plugin installer, which had a signature from Polish firm Interrex and enabled retrieval of an Interrex certificate-signed DarkGate payload or PowerShell scripts from a controlled server.

Article Link: DarkGate malware spread through malicious Pidgin plugin | SC Media