Warning: Operation to attack Vietnamese users through Unikey percussion

Cyber ​​security company CMC Cyber ​​Security recently discovered a malicious code that uses new techniques to attack Vietnamese users. Specifically, this type of malicious code is taking advantage of Unikey software, the most popular Vietnamese percussion in Vietnam to attack users.

1. Warning: There appears an email notification of Windows updates from a fake Microsoft that contains cyber ransomware
2. Warning: New malware can hijack Vietnamese users' access to Facebook and Gmail

According to CMC experts, when Unikey runs, this software will upload to the Windows program. Hackers took advantage of this to insert a malicious kbdus.dll file into the UnikeyNT.exe folder. This malicious file will be preferred to upload instead of Windows programs. Therefore, when Unikey is turned on, malicious code will also be executed, making the user undetectable.

Warning: Operation to attack Vietnamese users through Unikey percussion Picture 1

The malware will collect the victim computer information, encrypt and send these data to the hacker's server.

According to the expert of CMC Cyber ​​Security Company, this new APT intentional attack campaign is carefully researched and extremely dangerous.

To protect computers from this APT attack, CMC Cyber ​​Security experts recommend that users should:

1. Double-check the Unikey installation directory, remove the kbdus.dll file from the same directory.
2. Anti-malware product to protect your computer.
3. Only download and use the official unikey from the Unikey.org website.

Warning: Operation to attack Vietnamese users through Unikey percussion Picture 2

According to experts, APT attacks in Vietnam are increasing and sophisticated with new technology which is constantly updated. Therefore, agencies and organizations need to improve the security of information security for their systems, make plans to review, prevent and be ready to respond when hazards occur.