What?
On 7 March 2025, the FBI issued warnings about an online scam involving fake file converters that are being used as a vehicle for distributing malware. These fraudulent websites masquerade as legitimate tools for converting documents, images, or videos into different formats. Instead of delivering the promised service, they install malicious software onto users' devices. This malware is capable of stealing sensitive information, including login credentials, financial data, and personal details, thereby posing a significant risk of identity theft and financial loss.1
The scam typically operates by enticing users to download a file converter application, which is in fact malware. Once installed, the malware can perform a variety of harmful activities, such as tracking keystrokes, capturing screenshots, and accessing files. The FBI's alert underscores the importance of exercising caution when using online file conversion services, as cybercriminals are increasingly exploiting these platforms to target unsuspecting individuals.2
So What?
Cybercriminals are becoming increasingly sophisticated, employing tactics that can easily deceive even the most cautious users.3 Understanding how to protect yourself is more important than ever. Here are some practical steps you can take:
- Verify website legitimacy: Before using any online file converter, research the website to ensure it is reputable. Look for reviews and ratings from other users, and check if the site is recommended by trusted sources such as virus total, sucuri, urlscan.
- Use trusted software: Opt for well-known and trusted file conversion software that is widely used and recommended by experts. Avoid downloading applications from unfamiliar or suspicious websites.
- Keep software updated: Regularly update your operating system and security software to protect against the latest threats. Updates often include patches for vulnerabilities that cybercriminals may exploit.
- Be cautious with downloads: Avoid downloading files from unknown sources. If a file converter prompts you to download additional software, be wary and consider using an alternative service.
- Enable security features: Use antivirus and anti-malware programs to detect and block malicious software. Enable real-time protection features to monitor your device for suspicious activity.
Following these recommendations will significantly reduce the risk of falling victim to fake file converter scams and protect your sensitive information from cybercriminals.
Indicators of Compromise (IOCs):
Below is a list of known Indicators of Compromise (IOCs) associated with these fake file converters which can be used by security teams to check for and block this activity.
| Domain |
Reason for block |
| Imageconvertors[.]com |
Phishing |
| convertisseurs-pdf[.]com |
Riskware |
| convertix-api[.]xyz |
Trojan |
| freejpgtopdfconverter[.]com |
Riskware |
| 9convert[.]com |
Riskware |