News, tips, advice, support for Windows, Office, PCs & more
Home icon Home icon Home icon Email icon RSS icon

We're community supported and proud of it!

  • Agent Tesla password-stealing malware is back

    Home Forums Code Red – Security/Privacy advisories Agent Tesla password-stealing malware is back

    Viewing 2 reply threads
    • Author
      Posts
      • #2370403
        Alex5723
        AskWoody Plus

        Phishing Malware Hijacks Bitcoin Addresses and Delivers New Agent Tesla Variant

        Affected platforms: Microsoft Windows
        Impacted parties: Windows Users
        Impact: Sensitive Information Collection from Victim’s Device
        Severity level: Critical

        FortiGuard Labs recently captured a fresh phishing campaign in which a Microsoft Excel document attached to a spam email downloaded and executed several pieces of VBscript code. This malware is used to hijack bitcoin address information and deliver a new variant of Agent Tesla onto the victim’s device.

        Agent Tesla, first discovered in late 2014, is a known spyware focused on stealing sensitive information from a victim’s device, such as saved application credentials, keyboard inputs (keylogger), etc. We have posted a number of detailed analysis blogs for Agent Tesla campaign captured by FortiGuard Labs over the past several year….

        • This topic was modified 1 week ago by Alex5723.
        1 user thanked author for this post.
      • #2370423
        Paul T
        AskWoody MVP

        Phishing attacks are hardly new and anyone speculating on Bitcoin should already be especially cautious.

        cheers, Paul

        1 user thanked author for this post.
      • #2370426
        doriel
        AskWoody Lounger

        Thanks for the article, interesting and understandable reading. This is apparently never-ending-story, because people simply do not understand (or just ignore), that they should not open attachments from unknown sources.. Its so obvoius! If I didnt order anything from SHOP.COM why should I open “urgent” email from SHOP.COM forcing me to open the suspicious attachement?

        FortiGuard Labs recently captured a fresh phishing campaign in which a Microsoft Excel document attached to a spam email downloaded and executed several pieces of VBscript code.

        Dell Latitude E6530, Intel Core i5 @ 2.6 GHz, 4GB RAM, W10 20H2 Enterprise

        HAL3000, AMD Athlon 200GE @ 3,4 GHz, 8GB RAM, Fedora 29

        • #2370526
          OscarCP
          AskWoody Plus

          Opening email-attached Office documents from untrusted sources is a big and basic no-no, because they are a common phishing tool.

          Windows 7 Professional, SP1, x64 Group W (ex B) & macOS Mojave + Linux (Mint)

          1 user thanked author for this post.
    Viewing 2 reply threads

    Please follow the -Lounge Rules- no personal attacks, no swearing, no politics or religion.

    Reply To: Agent Tesla password-stealing malware is back

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.