BIOPASS RAT uses live streaming to spy on the screens of its victims. The malware was identified by a team of threat researchers at Trend Micro. Researchers said the watering-hole attack typically pops us and looks like a benign support chat window. The attack misuses the object storage service (OSS) of Alibaba Cloud (Aliyun) to host the malicious scripts as well as to store the exfiltrated data from victims screens. The attacker-controlled account is hosted on Alibaba OSS, researchers said.
Source: https://threatpost.com/biopass-rat-live-streaming/167695/