For as low as $15, anyone can steal your crypto log-ins. How to keep yourself safe from any malware?
Have you heard about the malware called ‘Agent Tesla’? This is probably one of the oldest forms of hacking on the Internet. Although, it is already old, a new report from a security website suggests that less-sophisticated hackers are now using Agent Tesla again for a new version of remote access. Here’s everything you need to know about this new hack.
Agent Tesla meaning: what you should look for?
As said, Agent Tesla is one of the oldest forms of hacking since 2014. This Trojan malware usually presented as phishing emails online. Hackers do the job via emails, wherein they will send malicious Microsoft documents to different victims. The goal is for them to open the file, then automatically run the malware inside their computers without them knowing.
Generally, it was done to steal passwords from bank accounts, or personal information about the victim. Now, due to the cryptocurrency fame all over the world, the hackers are also adjusting Agent Tesla to open the victim’s crypto wallet and send cryptocurrencies to the hackers’ wallet, instead.
As explained by the first group to identify the hack, Fortinet, “This malware, is used to hijack bitcoin address information and deliver a new variant of Agent Tesla onto the victim’s device.” They also added, “most attackers like to spread malware in phishing emails. As a result, new phishing campaigns are detected every day by FortiGuard Labs. People should be more careful when opening files attached to email.”
How to know whether it’s a scam email
As reported via ZDNet, the new version of Agent Tesla now sends phishing emails to random accounts online. One of their emails, for example, includes a Microsoft Excel file that has the name of “Order Requirements and Specs.” Once you open the file, the malware will automatically download and run it through the computer’s system.
It will soon hijack the bitcoin wallet of the owner, if it sees that you have it. Then, the hacker will now have an access to do remote access. Once the bitcoin wallet is spotted, the code will modify the wallet and change it into the hackers’ wallet. Therefore, stealing your money without you even knowing it.
What’s worse is that ZDNet identifies this type of scam can be purchased for as low as $15 via forums.
“For many months, it has remained among the top families of malware in malicious attachments caught by Sophos. Because of this sustained stream of Agent Tesla attacks, we believe that the malware will continue to be updated and modified by its developers to evade endpoint and email protection tools,” said last year by another security firm, Sophos.
Know your email
Before you get to become a victim of this new phishing email, what are the things you should know to protect your information and money?
First off, never ever share your personal information with anyone, especially over the phone or online. Second, do not open malicious files that are being sent to you on social media platforms, or via email account. Third, if you think you have been victimized by hackers, better change all your passwords immediately and repeat the first step.