In response to the news that an updated version of the Smoke Loader malware downloader has been sampled in the wild and contains one of the first successful uses of the PROPagate injection technique, Jake Moore, Security Specialist at ESET commented below.
Jake Moore, Security Specialist at ESET:
“Password stealing malware is nothing new. Clicking on malicious links or requesting you to enable macros is a classic technique using by cyber criminals.
The best way to better protect yourself is to simply be aware of these types of attacks. However, you should also ensure that any accounts associated with your business are secured by a long complex password as well as two-factor authentication. Authentication codes are vital should your password ever get compromised as it will reduce the chance of a hacker getting into your private accounts. Good password managers will also help protect your password where you can copy and paste your password into the field rather than type in each keystroke.
The importance of keeping operating systems and application updates current is also an imperative part of the cyber security landscape. Remember patch, protect or pay the consequences.”