
New Email Attack Uses Multiple Steps to Avoid Detection: Stay Alert to Phishing
Cybersecurity researchers found a new malware framework called Avalon that spreads through phishing emails and combines multiple attack methods in one package.
Source
The Hacker News
Original headline: New Avalon Malware Framework Packs CrownX Ransomware Capabilities
Plain-English summary by GetCyberRight. Read the full report at the source above.
Cybersecurity researchers have discovered a new malware framework called Avalon that criminals are spreading through phishing emails. This malware is concerning because it uses multiple steps to sneak past security software, and it combines several dangerous capabilities. It can steal passwords, move through computer networks, provide remote access to attackers, disrupt data recovery, and install ransomware that locks up your files. This threat affects anyone who uses email, especially at work. The attack starts with a phishing email that tricks you into clicking something or opening an attachment. Once activated, the malware can steal your login credentials, spread to other computers on your network, and eventually lock your files with ransomware. Because it works in stages and uses techniques to avoid detection, traditional antivirus software may not catch it right away.
Here is what you should do to protect yourself. First, be extremely suspicious of unexpected emails, even if they appear to come from someone you know. Do not click links or open attachments in emails you were not expecting. Second, if you receive an email asking you to take urgent action like clicking a link to verify your account or view an important document, stop and verify it through a different method. Call the person or company directly using a phone number you look up yourself, not one provided in the email. Third, make sure your computer's antivirus software is active and up to date. Fourth, back up your important files to an external hard drive or cloud service that is not always connected to your computer. Building long-term safety habits is essential. Treat every unexpected email with suspicion, especially if it creates urgency or asks you to click something. Teach everyone in your family to ask questions before clicking. Keep your computer and all software updated. Use unique passwords for different accounts and enable two-factor authentication wherever possible. Regular backups are your best defense against ransomware because they let you restore your files without paying criminals. Make backing up a weekly habit.
Curated from trusted cybersecurity sources by GetCyberRight
Source: The Hacker NewsStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

Why Your Android Phone Needs an Update: The Bad Epoll Security Flaw
A critical flaw in Android devices allowed complete takeover. AI security tools missed it, but human researchers caught it. Here's what to do now.
3 min read
Millions of Home Devices Have Hidden Flaws That Can't Be Easily Fixed
Seven security flaws discovered in millions of cameras, drones, and smart devices have no clear fix. Here's what families need to know.
3 min read
New Avalon Malware Disguised in Phishing Emails Can Lock Your Files for Ransom
A new type of malware spreads through phishing emails and can steal passwords, take control of computers, and lock files for ransom payment.
2 min read
How Hackers Trick Developers with Fake Software Packages
North Korean hackers are creating fake copies of trusted developer tools to steal sensitive information. Here's what families need to know.
3 min read