Thursday, 5 June 2014

Trend Micro Discovers New Attacks That Uses Windows PowerShell



Trend Micro, the leading data security solutions vendor, is warning users against a new attack, which makes use of Windows PowerShell to infect your system and then, steal important information. The company’s researchers have recently discovered an email attack which disguises itself to be sent from Duo Wei Times, a Chinese newspaper based in the US, using Windows PowerShell to download harmful files and then bypass execution policies to execute the downloaded files. This attack email consists of a malicious .LNK or shortcut file as an attachment. On running this attached file, it makes use of Windows PowerShell command line to download and run another malware, ‘TROJ_PRESHIN.JTT’. This malware in turn uses Windows PowerShell and downloads and installs final payload ‘BKDR_PRESHIN.JTT’. This final malware is then used to steal our Outlook passwords and the passwords stored in Internet Explorer. This virus is also able to gather certain other data from infected system which can be used for survey purposes.
Installing a good-reliable antivirus and internet protection software like those of Trend Micro can keep you protected from this attack and related viruses. The Trend Micro Internet Security can detect the aforementioned viruses before they can enter into your system and, Trend Micro Antivirus is effective solution which can scan-detect these viruses and remove them effectively. Trend Micro security solutions are reliable, easy, and effective data security software. Meanwhile, an easy to reach and effective Trend Micro technical support is also available at times when you have problems with the solutions. One good company at this front is Techcillin.

The bottom line is, the attacks now, are more severe and advanced. It is necessary for users to install reliable security solutions as the attacks frequency is on the rise.   

No comments:

Post a Comment