According to researchers, a new trojan dubbed FlawedAmmyy is currently being distributed by hackers to get full access to their victims’ Windows computers.

Proofpoint researchers say that the remote access trojan is built on top of a source code for a legitimate app, which is why users may not know that their computer had already been infected.

A prolific hacking group known as TA505 is suspected to be behind the spread of the trojan, which is sent as a zip file attachment to emails with subjects relating to invoices, bills, or receipts. The researchers advise users to never open attachments from unknown senders, and urge users to layered defences at the email gateway, IDS, and endpoint for greater protection.

Source: ZDNet


Leave a Comment

Your email address will not be published. Required fields are marked *