Fresh Malware with Data Manipulation Ability on Indian Cyber-Space-CERT-In

According to CERT-In (Computer Emergency Response Team of India), the apex cyber security organization of the country, one fresh malware is putting Indian Internauts in danger of one phishing virus which can modify personal data thus causing harm to the user, so published thestack.com in news on May 14, 2015.

It maybe noted that CERT-In is the key organization for fighting phishing or hacking assaults as well as for strengthening the Indian cyber-space's security-related defences.

In one report that CERT-In has released, it's said that Bioazih, the virus' name, is capable of staying obfuscated behind some 5 aliases for hiding the malevolent purposes it is intent on achieving.

CERT-In has cautioned that Bioazih utilizes the Trojan tactic of enabling backdoor access to any system for hackers who aim at stealing or manipulating data from any computer system remotely.

The malware spreads through spear phishing electronic mails having harmful file attachments that exploit security flaws in Microsoft Office alternatively RAT (remote access Trojan) which contaminates computers of targeted users through malware installers, explains CERT-In. Thestack.com published this in news on May 14, 2015.

The cyber security group also said that the malicious program utilized various methods for keeping its C&C servers anonymous alternatively established private networks of the virtual kind for hosting servers while keeping hidden their true locations.

After the malware established connection, it exchanged messages with its command-and-control(C&C) infrastructure for carrying out remote instructions, erased or made new files, downloaded or uploaded data, overwrote folders/files, deactivated itself, and more, CERT-In's advisory stated. NDTV GADGETS published this in news on May 14, 2015.

A CERT-In expert advised end-users to search for Bioazih as well as its aliases or similar identifications within dubious e-mails as well as web-links while remain careful to avoid opening them. Moreover, they should ensure for strong security firewalls for e-mails along with other Internet applications, and on personal computers to eschew becoming victim of its attack, he said.

And as per some counter-measures that CERT-In suggests, end-users must keep watch for unfamiliar ports in active state, malware's erasure of system alterations like registries entered or files created, and more.

» SPAMfighter News - 5/26/2015