This data-stealing phishing attack is a triple malware threat

Cyber ​​criminals are always looking for new ways to spread malware. One of their favorite ways is by hiding malware in Android apps. Tap or click here to avoid three types of Android malware.

Phishing attacks are another popular way to spread malware and steal sensitive data. There is a new type of phishing attack doing the rounds that is hard to spot.

Read on to learn how this malware spreads and what to do about it.

Here’s the backstory

What’s worse than one piece of malware sneaking into your device? Three different types of malware at once. That should send a shiver down your spine, and sadly, that’s where cybersecurity researchers are at Fortinet details in the latest report

The phishing campaign targets Windows computers and tries to remove three different malware variants to steal your sensitive data. In the report, the AveMariaRAT, BitRAT and PandoraHVNC malware enters your computer through an infected Excel document.

Your daily dose of tech smarts

Learn the tech tips and tricks only the pros know.

The term “fileless” refers to the email that does not have the malware file attached, but rather executing a macro command when you open the Excel document. Attackers often use a fake payment notification for the bait.

The most dangerous thing about the email is that it automatically activates the malware when you open the document and enable macros. The macro command fetches the three malware variants from the cybercriminal’s server disguised as a legitimate PowerShell file to evade detection.

What can you do about it?

The phishing attack is serious, but you can drastically reduce your chance of infection if you keep your wits about you and take steps to protect yourself. Here are a few tips for doing that:

Do not click on links you receive in unsolicited emails or text messages. They can be malicious and infect your device with malware. Never open Word or Excel files attached to unsolicited emails. If you open one of these documents and it says to enable macros, close the file and delete it immediately. Keep your computer and mobile devices updated to the latest version. Operating system and application updates protect you from the latest threats, and it’s your first line of defense against malware.Use two-factor authentication and password managers for increased security.Always have a trusted antivirus updated and running on all your devices. We recommend our sponsor, TotalAV† Get an annual subscription to TotalAV now for just $19† That’s over 85% off the regular price!

keep reading

True or False: Macs Are Immune to Malware and Viruses


Your daily dose of tech smarts

Learn the tech tips and tricks only the pros know.

Use this simple, free check to see if a site or file contains malware

Leave a Reply

Your email address will not be published.