Skip to main content
    New Email Attack Uses Multiple Steps to Avoid Detection: Stay Alert to Phishing
    Cybersecurity
    Important
    2 min read

    New Email Attack Uses Multiple Steps to Avoid Detection: Stay Alert to Phishing

    Cybersecurity researchers found a new malware framework called Avalon that spreads through phishing emails and combines multiple attack methods in one package.

    Source

    The Hacker News

    Original headline: New Avalon Malware Framework Packs CrownX Ransomware Capabilities

    Plain-English summary by GetCyberRight. Read the full report at the source above.

    Published Friday, July 3, 2026Updated Saturday, July 4, 20262 min read
    Share:

    Cybersecurity researchers have discovered a new malware framework called Avalon that criminals are spreading through phishing emails. This malware is concerning because it uses multiple steps to sneak past security software, and it combines several dangerous capabilities. It can steal passwords, move through computer networks, provide remote access to attackers, disrupt data recovery, and install ransomware that locks up your files. This threat affects anyone who uses email, especially at work. The attack starts with a phishing email that tricks you into clicking something or opening an attachment. Once activated, the malware can steal your login credentials, spread to other computers on your network, and eventually lock your files with ransomware. Because it works in stages and uses techniques to avoid detection, traditional antivirus software may not catch it right away.

    Here is what you should do to protect yourself. First, be extremely suspicious of unexpected emails, even if they appear to come from someone you know. Do not click links or open attachments in emails you were not expecting. Second, if you receive an email asking you to take urgent action like clicking a link to verify your account or view an important document, stop and verify it through a different method. Call the person or company directly using a phone number you look up yourself, not one provided in the email. Third, make sure your computer's antivirus software is active and up to date. Fourth, back up your important files to an external hard drive or cloud service that is not always connected to your computer. Building long-term safety habits is essential. Treat every unexpected email with suspicion, especially if it creates urgency or asks you to click something. Teach everyone in your family to ask questions before clicking. Keep your computer and all software updated. Use unique passwords for different accounts and enable two-factor authentication wherever possible. Regular backups are your best defense against ransomware because they let you restore your files without paying criminals. Make backing up a weekly habit.

    Protect Yourself

    Use our GCR Scam Guard to check if you're affected and take action.

    Found this useful?

    Share it with someone who could use a heads-up.

    Share:

    Curated from trusted cybersecurity sources by GetCyberRight

    Source: The Hacker News

    Discussion

    0

    Sign in to join the discussion.

    Stay ahead of cyber threats

    Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.