Technology

Various Threats that are Affecting Mexican Computer Users

Threats

Computer security is one of the most important issues today. Important matters or data in people’s lives are stored on both smartphones and personal computers, but in many cases, the privacy and integrity of all that information are often compromised by external factors.

According to the ESET Security Report 2019, malicious code related to malware development is the main threat to organizations and users in Latin America. In this region, 40% of companies were infected by some type of virus.

For its part, Mexico is one of the countries that suffer the most from computer attacks in the region. That is why the digital security company made detailed statistics about the most recurrent infections in the electronic devices of citizens in the country.

The study that reveals the five threats with the highest incidence in Mexican territory covers the period from the first day of January to the last day of June. Here are the malware families that most annoy Mexican cybernauts.

JS/ProxyCharger

The largest number of virus detections during the first half of 2019 is related to this type of malicious code. This could well be understood as a type of Trojan integrated into Java Script, whose purpose is to prevent the user from accessing various websites.

From this action, the malware redirects the person’s traffic to another IP address, which is where the attack takes place because sometimes the portals are infected or are even the platforms that hackers use to carry out their offensives.

Win32/Emotet

Emotet’s family is one of the best known among banks, as these are his main victims. It is also one of the most complexes, as its operation often evades detection based on signatures. In addition, it is a malicious code that is used to distribute other Trojan families through it.

In November 2018, this malware family had global relevance because it was used to expand a large-scale spam campaign by sending Word or PDF files that were presented as invoices, payment notifications or account alerts from legitimate organizations, but actually contained malicious links.

Win32/Ramnit

This type of virus has the characteristics of a computer worm since its propagation is based on the connection of USB devices and other removable drives. In addition, this type of code has the ability to infect the main boot record of the device and thus ensures its persistence in the operating system.

It also has the ability to infect executable files as well as HTM/HTML. This increases the probability of propagation. Its main harmful purpose is to steal confidential data related to users’ banking services.

Like Ramnit, Bondat is a computer worm, only, in this case, it is written in JavaScript and works as a carrier of the initial infection, as its task is to download other files that can perform a large number of adverse actions for both the computer and the information stored in it.

It spreads through removable media from the LNK technique, which runs a malware and then is the corresponding file, which makes it easier to go unnoticed. The main target of this code is Windows computers.

Win32/Bundpil

Bundpil is a worm that spreads from USB devices and is part of Wauchos, one of the largest botnet families in the world, which is also known as Gamarue or Andromeda. Infections could also be carried out via social networking links or spam emails.

The main task of this type of malicious code is to steal access credentials by means of a plugin, which are buttons to carry out certain actions on websites, which captured the information and also installed additional malware on the infected system.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

To Top