Spyware Agent Tesla was also the most frequently detected malicious code for the operating system in October Windows In Czechia. Along with it, the Agent.QMG malware also appeared again, an advanced malicious code whose task is to download other malware to the attacked device, including the aforementioned spyware. According to the analysis of security experts, the attackers focus on selected European countries, for which they then tailor attack campaigns. In October, they targeted Czech users with fake e-mails asking for price quotes or notifying them of the delivery of a package from the shipping company DHL. This follows from regular cyber threat statistics from ESET.
According to the regular monthly statistics of cyber threats for the operating system Windows in October Spyware Agent Tesla slightly strengthened again. He attacked Czech users most strongly from the beginning of the month. Attackers use email attachments to spread it, which they deliberately pass off as various official documents.
"Since September, we have observed a larger number of attachments with the Agent Tesla spyware, which the attackers translate into Czech. In this particular case, this is not a standard situation, because the Agent Tesla spyware is a globally widespread malicious code, and we tend to record attack campaigns in English. Currently, however, attachments are still appearing in the Czech Republic with the name thank you letter.docx.exe or Zpusob_platby,jpg.exe, for example," says Martin Jirkal, head of the analytical team at ESET's Prague branch, about the October development.
In October, the Agent.QMG malware also appeared among the most common malicious codes. According to security specialists on the other hand, this malicious code was clearly aimed at Czech users.
"The Agent.QMG malicious code appeared most in the Czech Republic at the end of October. In his case, we saw Czech translations already in the subjects of the e-mails themselves. The attackers tried to pass off the e-mails as, for example, a request for a price quote or a notification about parcels from the shipping company DHL. From a more detailed analysis, we also found that the attackers primarily specialize in Europe and gradually target individual countries. In addition to the Czech Republic, they also attacked Hungary, Spain, Bulgaria and Italy in October," explains Martin Jirkal.
Other dangerous attachments that Czech users may have encountered in October were, for example, the attachment named "Inquiry_pdf.exe" spreading the Agent Tesla spyware, or the attachment "100037779694.vbe" spreading the Agent.QMG malware.
You could be interested in
In the hunt for passwords, attackers also use advanced threats
Spyware is a constant risk in the Czech Republic. Through it, attackers aim to steal our personal data, especially user passwords. Passwords remain a highly sought-after commodity - attackers can use them for a number of other attacks, for example for so-called brute force, or resell on the black market.
"In addition to specific types of spyware, such as Agent Tesla spyware or Formbook spyware, attackers also use other malware, such as Agent.QMG. This is a sophisticated and dangerous malicious code that is tailored to be difficult to analyze. Its primary function is to download spyware and other types of malicious code to the compromised device. Attackers use it to support attacks and make it easier for spyware to access our computers," says Jirkal.
Demands on secure password management are growing
Along with the attacks on our passwords, the need to protect them optimally and effectively is also growing. The password remains the main security element for many of our online services and as such is vulnerable to a number of attack strategies, whether it is malicious code attacks or phishing, a method known as social engineering, whose goal is to obtain passwords and other access data through direct, manipulative communication with users.
“From our experience, we know that users often do not create strong passwords because they are difficult to remember. But by doing so, they are giving everyoneanc not only your finance, but also sensitive personal data and their privacy. Password managers can help them manage this, specialized programs that securely store login details in encrypted form and automatically fill them in when logging into our accounts. They are so much safer varia"This eliminates the need to write passwords down on a piece of paper, and users no longer have to create easy-to-remember but weak passwords, or reuse them across multiple accounts," adds Jirkal from ESET.
Users can purchase a password manager as a separate program, but it is also part of quality ones security solutions. They also protect users from a number of other threats, such as spyware, unwanted applications or dangerous websites.
