A new line of malware using PlugX RAT is attacking Vietnamese users, this is a warning just released by CMC Cyber Security. This type of malware can steal cookies from websites like Facebook, Gmail, Outlook, etc. to steal login rights, even if the user has turned on 2-step authentication.
- Ai.type keyboard application on Android is silently taking money from users, if you are installing, remove immediately
- Discovering a large-scale APT attack into Vietnam, users need to quickly download the malicious tool
Specifically, information about the user's login status will be stored in cookies when they log in to the site. These cookies may allow hackers to steal login sessions, thereby exploiting sensitive information for malicious purposes.
The PlugX malicious tool has many different versions that are commonly used by hackers in APT attacks around the world, including attacks on Vietnam.
To prevent and combat APT attacks, Security recommends that organizations take the following measures:
- Raising awareness of information security for officials and employees.
- Use technologies, techniques, and system monitoring methods to detect early signs of attack to prevent promptly and minimize harm.
- Testing the system, assessing vulnerabilities and threats to take measures to overcome them early and limit attacks.
- Plan for incident response in advance so that there is no quick response, minimizing damage when attacked.
- Deploy defense, from network entry points to endpoints.