Tech

Phishing: a dangerous virus hides in the Windows calculator

Deepak GuptaJuly 27, 2022
0

A team of security researchers has just discovered that malware is currently using the calculator in Windows 7. It is not yet known whether Microsoft has updated Defender to counter this attack.

phishing-windows-

It has become quite difficult to force security systems to Windows for viruses or malware. The malicious people who hide behind all the cyberattacks must therefore redouble their ingenuity and creativity to carry out their attacks. And they unfortunately do quite well. It is in this way that hackers have for example used Microsoft Team on several occasions, taking advantage of the blind trust that company employees place in the platform.

More recently, a cyberattack used HTTPS proxy techniques to hijack Office 365 accounts, with thousands of businesses affected. Now, security researchers have just discovered that a campaign phishing uses the Windows 7 Calculator application to carry out his attack. It’s the media Bleeping Computer who just relayed the information.

Phishing Attack Now Uses Windows 7 Calculator

Concretely and without going into too technical details, this is how the attack unfolds.

  • This starts by prompting the user to download an ISO disc image disguised as a PDF file.
  • The latter contains a shortcut that opens a copy included in the Calculator application.
  • Windows 7 calculator will use dynamic link libraries (dlls) in the same folder.
  • Opening the calculator thus does not trigger no alarm in windows.
  • A file that contains the Qbot malware loads and the latter can thus infect the Windows file explorer and start data theft.

Also note that Microsoft has already fixed this flaw. Thereby, this innovative phishing campaign does not work with the calculator of Windows 10 and Windows 11. But you still have to be careful. Because the accidentally downloaded file contains the version of the Windows 7 calculator, which uses this technique to attack the most recent versions of Windows. As in all cases in the face of similar phishing threats, it is therefore necessary make sure you have up-to-date anti-virus software and avoid downloading files from suspicious websites.

Read also: Phishing, hundreds of fake FR domain names registered, an unprecedented campaign is preparing

Source : bleepingcomputer.com

We have other articles that may interest you:
  1. You will not find mobile plans with such a good network for less than those of Sosh currently
  2. 3 key tips to invest in cryptocurrencies and not fail in the attempt
  3. Newskill Kicks Off The Year Introducing Its New Seth Wireless Headphones
  4. Sneak into the batcave: everything you need to know about Batman
  5. NFT: the first vending machine arrives in New York
  6. Scenes not to forget: the most iconic in the history of cinema
Deepak GuptaJuly 27, 2022
0

Related Articles

Be careful parents! Free Fire and Call of Duty and other video games not suitable for children

October 20, 2021

Possible specifications of the GeForce RTX 4050

May 21, 2022

This book is the complete collection of One Piece and costs 1,900 euros

September 13, 2022

Tesla signs a partnership with Casino to install Superchargers

February 10, 2022

Leave a Reply

Your email address will not be published. Required fields are marked *