Cybercriminals have developed a new scheme to infect devices and collect data. This was reported by TASS Regarding Positive Technologies (PT).
Attackers disguise phishing emails as replies to supposedly previously sent messages and exploit trust between employees, prompting the victim to forward the reply.
This scheme has been used by the Hive0117 group, which has been seen in phishing attacks before. Members of the group attach a password-protected archive containing the DarkWatchman Trojan to their emails. This malware allows you to connect to your computer, download other programs, collect company data, and browse the network.
To instill trust in the recipient, attackers disguise the message as a response to a previous email and create a sense of urgency by mentioning a tax audit and asking for information to be forwarded to an accountant. Experts explained that such attacks have a high probability of success because colleagues are often perceived as reliable sources. They said that such a letter was sent to an employee of one of the holding companies.
According to Positive Technologies, malware remains the number one method of attack against businesses, accounting for 64% of all incidents, and attacks using remote administration software increased for the second quarter in a row.
Russians before It has been saidhow to secure your data in the cloud.
What are you thinking?
Source: Gazeta
Jackson Ruhl is a tech and sci-fi expert, who writes for “Social Bites”. He brings his readers the latest news and developments from the world of technology and science fiction.