A major threat on the web, since it would have already hacked nearly 711 million of email addresses and probably infected at least a hundred thousand PCs on Windows. Initially it all starts with a Spam campaign and ends with a banking malware on the terminals .
Already 711 million of email addresses trapped by this spambot
The Parisian security researcher known under the pseudonym Benkow has identified on a very sneaky and very effective threat, currently rampant on the internet. It is a powerful spambot which, unlike other malware of this type, was able to pass between the cracks of anti-spam by using a list of 80 million official and valid email addresses, which a majority was part of data stolen in the hacks of LinkedIn and Badoo.
Indeed, during previous flights, pirates had a lot of information such as mails, passwords, SMTP addresses, and user ports. These two latest information helps to bypass the vigilance of anti-spam filters and other blacklists usually protecting mail.
A spambot try to disseminate the banking malware Ursnif
These lists present in a server in the Netherlands served to send large amounts of emails these days, in order to deceive Internet users, but also to test the PC to find out those who are vulnerable to a well known trojan and locate their IP address. These spam indeed contain a back door to install the banking malware Ursnif.
Do not be safe if you notice any suspicious movements on your bank accounts, because infection occurs in two steps as we have just seen, so as not to attract attention. Second spam for the most vulnerable PC can therefore be sent several days or weeks after, in order to allow Ursnif to break into your system. Therefore be very vigilant in the coming weeks
If you want to know, if your address has been leakee, it is possible to test this on the site
Have I been pwned ?
Did you like this article ? Then share it with your friends by clicking on the buttons below:
No comments: