National Cyber Security Center of the National Security Agency (NBÚ) warns against a phishing campaign, which spreads the Agent Tesla malware. In it, the attackers send e-mails from legitimate but compromised addresses. The NBU draws attention to this on the social network.
“The messages often have an order confirmation subject line and an attachment that can infect your device and steal your sensitive data – such as passwords or bank information,” brings the NBU closer.
As part of the protection of the office stresses that people should never click on links or download files they don’t expect, don’t know, or are of a suspicious nature. If possible, he recommends verifying the legitimacy of the message through verified channels.
It also recommends activating multi-factor authentication on all important systems and services that support it. “Even in case of stolen login data, you will create an additional obstacle for the attacker,” NBU notes that regular software updates are necessary, as Agent Tesla, as well as other types of malware, can exploit security vulnerabilities.
