Hackers have begun stealing data from Russian companies using phishing files with a "technical specification." This was reported by journalists, citing Angara Security.
The attacks begin with sending emails to employees, where the subject and content are disguised as edits to the technical specifications. The malicious file, hidden in an encrypted archive, looks like a PDF document, but in reality, it is an executable file "Technical Specification No. 119843-28 Incoming N_3435.scr."
When opened, data on the workstation is compromised. A virus is downloaded that sends stolen data via email, as well as a remote access service program. This allows attackers to gain permanent access to data, collecting passwords and other information.
Experts note that all used files are deleted immediately after completing their tasks. It is assumed that attackers can collect information from the desktop version of the Telegram messenger.
Read more on the topic:
Now on home
RSC Energia wins funds from Proton-PM
The short-term car rental service offers new deals for the holiday season
The accident occurred at the CHP plant
The car is priced at 39 million rubles
New technology surpasses aviation standards tenfold
Buggy production localized by 99%
The spacecraft conducts round-the-clock high-resolution surveillance
The "Kosmos" fleet has only one Yak-42 left
What has changed in the banknote dedicated to the Volga Federal District
The plant is scheduled to launch in 2026
The development of the heavy combat vehicle was abandoned in 2008
Project 1155 Large ASW Ship Arrives at Severomorsk Dock After 220 Days