Russian hackers with links to Moscow use Britney Spears's raunchy Instagram posts to hide messages about malware that can empty your bank account

  • Hacking group have hidden messages to malicious software in comments
  • This allows them to hide their malware and avoid detection by authorities
  • The software allows the hackers to monitor a victim's browser activity
  • This could give them access to private information and bank details
Russian hackers have hidden messages in comments on Britney Spears' Instagram account to a malicious virus that spies on users for their private details.
The group have hidden coded instructions to malware on the star's posts, which direct several sophisticated 'watering hole' attacks.
The attacks, named after predators in the wild that lurk by watering holes for prey, target legitimate websites that victims are likely to visit.
A group of security researchers who discovered the hack have blamed Russian group Turla, which is linked to Putin's cyber intelligence unit.
Scroll down for video
Russian hackers have hidden messages (highlighted) to a malicious virus that takes over computers within comments on Britney Spears' Instagram account
Russian hackers have hidden messages (highlighted) to a malicious virus that takes over computers within comments on Britney Spears' Instagram account

HOW IT WORKS

The hackers target legitimate sites that the victim is likely to visit.
Once on the site users are asked to download a Firefox plugin that is actually a virus.
Once downloaded the plugin allows the hackers to monitor everything typed into the browser including passwords, personal details and banking logins.
The hackers are using comments on Britney Spears's account to give the malware instructions.
Using this technique the hackers can hide their activities in plain site, making it harder for people to shut down the scam. 
The cyber criminals are attempting to infect computers and phones using a fake Firefox browser plugin.
The group tricks people into downloading the fake plugin from reputable websites.
The plugin found by the security researchers was being pushed through a Swiss security company's website. 
Once downloaded the plugin allows the hackers to monitor everything typed into the browser including passwords, personal details and banking logins.
The Russian hackers are using links and codes on Britney's account to control the malware and spread it around.
The star's Instagram posts are inadvertently giving the criminals a back door into other people's computers and phones by acting as a secret messaging system.
Using this technique the hackers can hide their activities in plain site, making it harder for people to shut down the sca