Man
Professional
- Messages
- 3,222
- Reaction score
- 810
- Points
- 113
A cyber intrusion can start with any inconspicuous file.
The Ministry of Internal Affairs of Russia has reported a new fraudulent scheme in which attackers distribute spyware under the guise of medical documents. The purpose of such an attack is to gain remote access to devices and upload victims' data.
According to the Department for Combating the Illegal Use of Information Technologies of the Ministry of Internal Affairs, the scheme begins with sending a distracting document. As a rule, this is an extract from the outpatient card. At the same time, spyware is installed on the victim's device, allowing the attackers to control the device remotely and execute various commands.
On October 1, Bi.Zone analysts confirmed an increase in the activity of such attacks in recent months. According to them, hackers began to use the Havoc framework, which is used for penetration testing and goes unnoticed by antiviruses as an unwanted program. This utility provides criminals with complete control over the system, which makes the attack even more dangerous.
Such schemes demonstrate a high degree of thoughtfulness, which complicates their identification. The Ministry of Internal Affairs warns users about the need for increased caution when receiving medical documents by e-mail and recommends not to open suspicious files without checking their source.
Source
The Ministry of Internal Affairs of Russia has reported a new fraudulent scheme in which attackers distribute spyware under the guise of medical documents. The purpose of such an attack is to gain remote access to devices and upload victims' data.
According to the Department for Combating the Illegal Use of Information Technologies of the Ministry of Internal Affairs, the scheme begins with sending a distracting document. As a rule, this is an extract from the outpatient card. At the same time, spyware is installed on the victim's device, allowing the attackers to control the device remotely and execute various commands.
On October 1, Bi.Zone analysts confirmed an increase in the activity of such attacks in recent months. According to them, hackers began to use the Havoc framework, which is used for penetration testing and goes unnoticed by antiviruses as an unwanted program. This utility provides criminals with complete control over the system, which makes the attack even more dangerous.
Such schemes demonstrate a high degree of thoughtfulness, which complicates their identification. The Ministry of Internal Affairs warns users about the need for increased caution when receiving medical documents by e-mail and recommends not to open suspicious files without checking their source.
Source
