Hacking Emails using FreeMilk
What is Freeemilk?
FreeMilk is one of the most dangerous cyber attacks as it keeps on installing malware on your system. It was named FreeMilk by the researchers at Palo Alto Networks, an enterprise security company, who found this phrase in the malware's code. These attacks have been spotted from May 2017.
Working with FreeMilk Malware?
Hackers track ongoing email conversations between two or more people. They take control of the victim's email account quietly and insert a new email in the ongoing conversation so that the victim has no way to find out if the email has been sent by the third party. The email contains boobytrapped files that infiltrate the computers using malicious codes and retrieve confidential information without getting noticed.
Once executed successfully, FreeMilk installs two payloads, PoohMilk and Franklin, in the victim's system. PoohMilk helps Freenkin run and perform two different tasks: to collect information from the host and to act as a second-stage downloader which further downloads other sophisticated malware.
Any computer which does not have the latest security patches and updated antivirus. India is at high risk of FreeMilk malware due to a large number of unpatched and outdated Windows machines. "FreeMilk is exploiting the CVE-2017-0199 vulnerability in Windows which was patched in April 2017. Therefore, ensure that any computer that has not been patched since before April 2017 is not allowed to on your network," says Ankush Johar, Director at HumanFirewall.io, a cybersecurity solution provider.
How to defend against FreeMilk?
FreeMilk is one of the most dangerous cyber attacks as it keeps on installing malware on your system. It was named FreeMilk by the researchers at Palo Alto Networks, an enterprise security company, who found this phrase in the malware's code. These attacks have been spotted from May 2017.
Working with FreeMilk Malware?
Hackers track ongoing email conversations between two or more people. They take control of the victim's email account quietly and insert a new email in the ongoing conversation so that the victim has no way to find out if the email has been sent by the third party. The email contains boobytrapped files that infiltrate the computers using malicious codes and retrieve confidential information without getting noticed.
Once executed successfully, FreeMilk installs two payloads, PoohMilk and Franklin, in the victim's system. PoohMilk helps Freenkin run and perform two different tasks: to collect information from the host and to act as a second-stage downloader which further downloads other sophisticated malware.
Any computer which does not have the latest security patches and updated antivirus. India is at high risk of FreeMilk malware due to a large number of unpatched and outdated Windows machines. "FreeMilk is exploiting the CVE-2017-0199 vulnerability in Windows which was patched in April 2017. Therefore, ensure that any computer that has not been patched since before April 2017 is not allowed to on your network," says Ankush Johar, Director at HumanFirewall.io, a cybersecurity solution provider.
How to defend against FreeMilk?
- Use the latest operating system.
- Make sure automatic updates are enabled and downloaded regularly.
- Ensure Firewall is enabled to block all network-based attacks.
- Never download anything from untrusted emails.
- Use the latest/updated antivirus.
- Install the latest patches.
- Remove all pirated/unpatched/outdated devices.
- Train/inform employees about phishing and other such attacks.
Comments
Post a Comment