For at least half a year, Procolored unknowingly distributed malware with its printer software, including a remote access trojan (XRedRAT) and a cryptocurrency-stealing clipper (SnipVex).
The issue was first flagged by YouTuber Cameron Coward, whose antivirus detected malicious files when installing drivers for a Procolored UV printer.
Upon further investigation by G Data's Karsten Hahn, multiple software packages linked directly from Procolored’s website were found to be infected and hosted on Mega.nz.
The malware likely originated from compromised USB drives used during the software packaging process.
After initially denying the issue, Procolored removed the infected files and confirmed they are now providing cleaned versions following a full scan.
Users are advised to update their software immediately and thoroughly scan their systems due to the risk of lingering infections caused by the malware's binary-altering behavior.
Read more...