Hi guys,

I hope you’re well today.

I wanted to let you know that hackers have hijacked a popular antivirus application called eSCAN to attack devices with it installed. When users update the virus definition database within the application, they download malware onto their device instead.

Avast researcher discovered the campaign after noticing some unusual responses to eSCAN update requests on customer devices. After investigating, they saw that a group linked to a North Korean hacking group was performing a man-in-the-middle attack to exploit a security weakness in the update process, replacing legitimate virus update files with malicious ones.

If you are using this antivirus application called eSCAN, you need to make sure that you are running the latest version, as the developer says that they have fixed the issue. If it were me, though, I would remove it straight away and install a reputable antivirus product such as Avast or Kaspersky instead.

You might also want to contact our privacy care team, who can give you further instructions on how to check if your device is safe.

You can read the full report from Avast here.

What is the world coming to when you can’t even trust the antivirus products there to protect you? Thankfully, incognito will always be safe and always secure. We are bulletproof 🙂

Please share this message with anybody you think might be using this eSCAN antivirus application. As always, if you have any questions or comments, please let us know.

I wish you all the best,

Stephen McCormack (Max Roberts :-))