Discovering a large-scale APT attack into Vietnam, users need to quickly download the malicious tool
Recently, the Department of Information Security has discovered a large-scale targeted attack (APT) campaign taking place in Vietnam's cyberspace. The host of this attack is located outside of Vietnam. The objective of this APT attack campaign is to spread malicious code into the information systems of Government agencies and to the national important national information infrastructure system of our country.
This morning (October 30, 2019), the Department of Information Security issued an order to coordinate and rescue incidents to specialized IT units, agencies, organizations, enterprises, etc. removed malicious files of the targeted attack (APT) campaign.
According to the Department of Information Security, this targeted attack campaign (APT) has now infected more than 400,000 IP addresses in Vietnam.
The agency also recommends that users urgently download this malicious code-checking and removal tool built and provided by the Department according to the link below.
http://remove-apt.vnpt.vn/download/tools/incident-response-v1.0.exe
For agencies, organizations, businesses and the Information Security Department, it is recommended that measures should be urgently implemented to monitor and monitor connections to malicious server control according to the list provided by the Information Security Department. summarize in the table below and instruct users, customers to download scanning tools, remove malicious code of APT campaign on ais.gov.vn, vncert.vn.
The malicious code used by the hacker group during the large-scale APT attack was emphasized as particularly dangerous with more than 16 variants, so the Department of Information Security requested units to send a love report. infection and treatment results (if any) to the Department before November 5, 2019.
This malware is mainly spread by deceiving users into clicking the word (.doc) file attached to an email. The purpose of hackers is to steal information, mobilize infected computers into a computer network to attack DDoS on large systems, perform escalating attacks on critical information systems. .
According to experts' recommendations, to prevent the spread of malicious malware on purpose of APT's attacks, users should pay attention to:
- Be careful when opening emails, especially 'strange' emails.
- When suspecting mail has malware installed, never open the attachment.
- It is necessary to quickly download and run APT's anti-malware scanning and removal tool at the website of the Information Security Department at ais.gov.vn.
New malware using web application has turned into a source of attack, very difficult to detect
Chinese hackers use fingerprints on glass to crack smartphones
You should read it
- Warning: Dangerous new malicious code spills over to Vietnam
- CMC InfoSec provides malware removal tool for online DDoS attack
- Warning: GandCrab extortionist code is attacking Vietnam
- 100 hackers were arrested for the super-dangerous BlackShades malicious code
- There were 4,035 cyber attacks on Vietnam in the first 5 months of the year
- Detecting APT attack campaign on important national infrastructure on Tet holiday
- Warning: Detecting a campaign to spread malicious code GandCrab 5.2 into Vietnam via fake email of the Ministry of Public Security
- Warning: New malicious code is infecting about 500,000 router devices
- Warning: The new Facebook virus, a malicious code that is spreading rapidly through Messenger
- Hide malicious code in Windows logs file to attack computers, new ways of attack by hackers
- Discovered a group of hackers who use secret code to spy on 21 countries
- How does malicious code break into user PC (Part 2)
Maybe you are interested
What information can your ISP see when you turn on a VPN?
How to set up personal safety information on Android
What information does a VPN hide? How does it protect your data?
Instructions for changing and editing music file information using 3uTools
Detecting a new ransomware strain that specializes in stealing login information from the Chrome browser
Meta 'death' of CrowdTangle, tool to track false information