Submit a comment
Global security firm Checkmarx has discovered malware specifically targeting users of cloud services from Telegram Messenger and Amazon Web Services (AWS).
Experts stressed that the attackers' primary goal was to steal login and password credentials to access Telegram and AWS accounts. A team of cybersecurity researchers continues to work to identify and eliminate the threat.
At the same time, network monitoring is being increased to detect new attacks and malware distribution methods early.
This is an extremely sophisticated method of data theft, which makes it particularly dangerous for many users. Cybersecurity experts Checkmarx note that the malware, previously known as “Agent Tesla,” uses complex mechanisms to bypass anti-virus systems and deliver malicious code to victims’ devices. The software is capable of stealing account data and passwords and sending them to the attacker’s remote server.
“Agent Tesla” is quite popular and has been around since at least 2014. Security experts note that the software was previously sent as a Microsoft Excel document attached to spam emails. Once the attachment was opened, the malware would be activated on the victim’s computer, from there starting to collect and send personal data to the attacker’s server.
For users of personal electronic devices, security and privacy experts note that it is necessary to update anti-virus software as soon as possible and avoid opening suspicious email attachments. In particular, those who use Telegram and AWS services need to pay attention to data protection and increase the security level of their devices.
According to Vietnamnet