Sudden Zip File hauv Email Xov tuaj yeem yog Malware

Cov txheej txheem:

Sudden Zip File hauv Email Xov tuaj yeem yog Malware
Sudden Zip File hauv Email Xov tuaj yeem yog Malware
Anonim

Key Takeaways

  • Cov neeg tawm tsam tom qab tus password nyiag malware tab tom siv txoj hauv kev tshiab kom tau txais tib neeg los qhib cov email phem.
  • Cov neeg tawm tsam siv tus neeg tiv tauj hacked inbox los ntxig cov malware-laden txuas rau hauv kev sib tham hauv email.
  • Cov kws tshawb fawb txog kev nyab xeeb qhia qhov kev tawm tsam qhia qhov tseeb tias tib neeg yuav tsum tsis txhob ua qhov muag tsis pom kev qhib cov ntawv txuas, txawm tias cov neeg paub txog kev sib cuag.

Image
Image

Nws yuav tshwm sim txawv thaum koj tus phooj ywg dhia mus rau hauv kev sib tham hauv email nrog cov ntawv txuas uas koj xav tau ib nrab, tab sis kev ua xyem xyav txog qhov tseeb ntawm cov lus tuaj yeem cawm koj ntawm malware txaus ntshai.

Kev ruaj ntseg sleuths ntawm Zscaler tau qhia cov ntsiab lus hais txog kev hem thawj cov neeg ua yeeb yam siv cov txheej txheem tshiab hauv kev sim txhawm rau txhawm rau txhawm rau txhawm rau txhawm rau txhawm rau txhawm rau txheeb xyuas tus password muaj zog nyiag malware hu ua Qakbot. Cov kws tshawb fawb Cybersecurity tau ceeb toom los ntawm kev tawm tsam tab sis tsis xav tsis thoob los ntawm cov neeg tawm tsam kho lawv cov txheej txheem.

"Cybercriminals tau hloov kho lawv cov kev tawm tsam tas li kom tsis txhob tshawb pom thiab, thaum kawg, ua tiav lawv lub hom phiaj," Jack Chapman, VP of Threat Intelligence ntawm Egress, hais rau Lifewire hauv email. "Yog li txawm hais tias peb tsis paub tshwj xeeb tias lawv yuav sim ua dab tsi ntxiv, peb paub tias yuav muaj lub sijhawm ntxiv mus, thiab qhov kev tawm tsam tau hloov mus tas li."

phooj ywg zej zog Hacker

Nyob rau hauv lawv cov ntawv tshaj tawm, Zscaler khiav los ntawm ntau yam kev tsis txaus ntseeg uas cov neeg tawm tsam ua haujlwm kom tau txais cov neeg raug tsim txom los qhib lawv email.

Qhov no suav nrog kev siv cov npe cov ntaub ntawv uas nyiam nrog ntau hom, xws li. ZIP, los ntxias cov neeg raug tsim txom kom rub tawm cov ntaub ntawv tsis zoo.

Obfuscating malware tau yog ib qho kev tawm tsam nrov rau ntau xyoo tam sim no, Chapman tau qhia, hais tias lawv tau pom kev tawm tsam zais hauv ntau hom ntaub ntawv sib txawv, suav nrog PDFs thiab txhua hom ntaub ntawv Microsoft Office.

"Sophisticated cyberattacks yog engineered los sawv qhov zoo tshaj plaws muaj peev xwm mus cuag lawv lub hom phiaj," said Chapman.

Image
Image

Ntxim qab kawg, Zscaler sau cov ntaub ntawv tsis zoo tau muab tso rau hauv cov lus teb hauv cov xov tooj ntawm email. Ib zaug ntxiv Chapman tsis xav tsis thoob los ntawm kev sib raug zoo ntawm kev sib raug zoo ntawm kev ua si hauv cov kev tawm tsam no. "Thaum qhov kev tawm tsam tau mus txog lub hom phiaj, cybercriminal xav kom lawv ua-hauv qhov no, qhib email txuas," qhia Chapman.

Keegan Keplinger, Kev Tshawb Fawb thiab Tshaj Tawm Tus Thawj Coj ntawm eSentire, uas tau kuaj pom thiab thaiv lub kaum os Qakbot phiaj xwm xwm txheej nyob rau lub Rau Hli ib leeg, kuj tau taw qhia txog kev siv cov email cuam tshuam hauv lub thawv ua qhov tseem ceeb ntawm kev tawm tsam.

"Qakbot txoj hauv kev hla dhau tib neeg kev ntseeg siab, thiab cov neeg siv feem ntau yuav rub tawm thiab ua tiav cov nyiaj them poob haujlwm, xav tias nws yog los ntawm qhov chaw ntseeg siab," Keplinger hais rau Lifewire dhau email.

Adrien Gendre, Tus Thawj Saib Xyuas Kev Lag Luam thiab Cov Khoom Muag ntawm Vade Secure, tau taw qhia tias cov txheej txheem no kuj tau siv rau xyoo 2021's Emotet tawm tsam.

"Cov neeg siv feem ntau raug cob qhia los nrhiav cov email chaw nyob tsis zoo, tab sis nyob rau hauv rooj plaub zoo li no, tshuaj xyuas tus neeg xa ntawv chaw nyob yuav tsis muaj txiaj ntsig vim nws yog qhov raug cai, txawm tias muaj kev cuam tshuam, chaw nyob," Gendre hais rau Lifewire hauv ib qho email sib tham.

Kev xav tua tus miv

Chapman hais tias ntxiv rau kev ua kom zoo dua ntawm kev sib raug zoo ua ntej thiab kev ntseeg siab tsim los ntawm cov neeg koom nrog, cov neeg tawm tsam kev siv cov hom ntaub ntawv thiab txuas ntxiv ua rau cov neeg tau txais kev tsis txaus ntseeg thiab feem ntau yuav qhib cov ntawv txuas ntxiv no.

Paul Baird, Tus Thawj Saib Xyuas Kev Ruaj Ntseg Hauv UK ntawm Qualys, sau tseg tias txawm hais tias thev naus laus zis yuav tsum thaiv cov hom kev tawm tsam no, qee qhov yuav dhau mus. Nws qhia tias ua kom tib neeg paub txog kev hem thawj tam sim no hauv hom lus uas lawv yuav nkag siab yog tib txoj hauv kev los txwv kev sib kis.

"Cov neeg siv yuav tsum ceev faj, thiab tau txais kev cob qhia, txawm tias email chaw nyob uas ntseeg siab tuaj yeem ua phem yog tias muaj kev cuam tshuam," pom zoo Gendre. "Qhov no muaj tseeb tshwj xeeb tshaj yog thaum email muaj qhov txuas lossis txuas nrog."

Image
Image

Gendre qhia tias tib neeg yuav tsum ua tib zoo nyeem lawv cov emails kom ntseeg tau tias cov neeg xa ntawv yog tus uas lawv lees tias yog. Nws taw qhia tias cov emails xa los ntawm cov nyiaj tsis txaus siab feem ntau luv luv thiab mus rau lub ntsiab lus nrog kev thov tsis ncaj ncees, uas yog qhov laj thawj zoo rau chij tus email li tsis txaus ntseeg.

Ntxiv rau qhov no, Baird taw qhia cov emails xa los ntawm Qakbot feem ntau yuav sau txawv thaum piv rau cov kev sib tham uas koj feem ntau muaj nrog koj cov neeg sib cuag, uas yuav tsum ua lwm yam kev ceeb toom. Ua ntej cuam tshuam nrog cov ntawv txuas hauv email uas tsis txaus ntseeg, Baird qhia koj txuas nrog kev sib cuag siv cov channel cais los txheeb xyuas qhov tseeb ntawm cov lus.

"Yog tias koj tau txais email [nrog] cov ntaub ntawv [koj] tsis xav tau, tsis txhob saib lawv," yog Baird cov lus qhia yooj yim. "Cov kab lus 'Curiosity tua tus miv' siv rau txhua yam uas koj tau txais los ntawm email."

Pom zoo: