Not all cyber criminals andThey are armed to the teeth with all kinds of complex hacking tools, as the average user can imagine. Often, such elaborate threats are not necessary as attackers can use human psychology to manipulate users into doing things they would not normally do.
This is an art of social engineering that cybercriminals widely exploit for unsafe purposes. The authors of the email analysis «Drive by Exploit» They have used this method to spread their creation.
Social engineering tricks
The Drive by Exploit scam is based on spam email campaigns and no user is safe if their emails are publicly known. Distributed email is quite extensive.
In it, the attackers go on to explain to users how their system was compromised by a threat called “privacy malware” because they visited a hacked website.
Some versions of the scam claim that a RAT has been installed (Remote Administration Tool) on the victim's machine to extract data and make recordings of pornographic videos.
However, the malicious tool was later removed to leave no trace. The message is designed to instill fear in the user. as the attackers claim they have obtained the person's data and even videos of them.
This is complemented by their statement that all collected data will not only be sold on the Dark Web, but will also be shown to the user's family, friends and colleagues.
Drive by Exploit
The Drive by Exploit is an example of a spam email campaign that aims to threaten email recipients about an alleged account breach. The Drive by Exploit email campaign is also known as a sextortion email scam.
The perpetrators behind Drive by Exploit use intimidation to threaten the potential disclosure of sensitive personal information.
The Drive by Exploit scam involves your email being compromised and You must pay a ransom to prevent embarrassing personal data from being leakedHowever, the email is just a scam.
Attackers demand between $700 and $1500 in Bitcoin
In the email sent, Cybercriminals claim that as long as the user pays them an amount between $700 and $1500 in the form of Bitcoin, transferred to a certain wallet, all the data they have supposedly collected will be permanently deleted, and the user will never hear from them again.
However, nothing the attackers have said in the email is real. There is no “private malware” or RAT that has infected the user’s computer.
This particular scan is also known by a different alias: the “Save Yourself” email scam. This became clear when experts noticed that both tactics used the same email addresses: “saveyou36@8395.com”, “saveyou51@1225.com”, “saveyou84@4914.com”, etc.
Both are nothing more than smoke and mirrors, and you should always be on the alert because shady people like those behind the “Drive-by Exploit” and “Save Yourself” email scams are lurking all over the Web looking for innocent and naive users to trick.
Drive by Exploit displays old user passwords
Some of the victims of the Drive by Exploit campaign report that The fraudulent emails they have received contain legitimate passwordsCybercriminals have inserted these user passwords in an attempt to make their claims sound plausible and to ensure that more people fall into the cyber trap.
Many users would think that their computer has been hacked, as that would explain how the scammers have their passwords. However, the passwords, like the email addresses, could have been obtained from old data leaks.
It's highly likely that user information that has been breached in the past has been sold on the Dark Web, and that's where the scammers have gotten it from. However, if it's a password you still use, you should change it immediately! Then, simply delete the Drive by Exploit messages from your mailbox.
It goes without saying that you should never open any attachments that may have been added to scam emails, as you may download a real piece of malware. malware on your machine.
How to safely remove Drive by exploit
In such a scenario, you can remove Drive by exploit automatically and detect various spyware/malware remnants using anti-malware software.
Similarly, The removal of this scam should also concern users of Android y Mac, as this scam is not limited to just PCs with Windows.
Even if the above-mentioned actions were not carried out, it is important to delete the email immediately and follow the steps on how to remove any malware or virus.
While the displayed password is not a threat in itself, there is still a chance that the victim's system has been directly attacked. This can happen in a number of ways, including opening malicious links or files attached to the email.
A full system scan is highly recommended and should be performed regularly because you can never be sure that your system has not been breached as the symptoms of having a particular malware on your system might come to light only when it is too late. Removal of drive by exploit and other viruses should be performed using only antivirus or malware-based software. antimalware confidence.
How to avoid Drive by exploit attacks
Here are some tips that can help you avoid these types of email scams from affecting your system:
Use an ad blocker
Ad blockers limit the number of banners and pop-ups you are exposed to. downloads Pre-click ads start when a malicious ad runs its scripts, but you can't start that process if your ad blocker won't let it load.
You can also Invest in blocking software scripts that will scan for malicious code on every new page. This won't protect you from all security vulnerabilities, but it will go a long way toward combating the threat of malvertising.
Be careful with email links
Even if an ad blocker limits a hacker's access to malicious advertising, it can still lure users to its own infectious websites. Phishing emails can be an effective way to trap a victim. Disguised as a legitimate sender, a bank or phone company, for example, they will urge victims to follow a link in the email.
Avoiding this threat is simple: Do not click on any URL or hyperlink in suspicious messages. If a sender you don't know asks you to change a password or claim a prize, be very cautious.
Keep software up to date
As tempting as it may be to keep pressing «remind me later», you should not ignore software updates. Exploit kits take advantage of weak points in your device, which are often created by outdated programs.
Keep them OS and updated browsers could prevent an unauthorized download from exploiting your device, even after an infection. This also applies to smaller add-ons that you might forget about. Don't let an old Chrome extension be an attacker's access point.
Use antivirus software
People often assume that they won't need antivirus software because they don't frequent the riskier areas of the Internet. As the dangers of malvertising and phishing links show, that's not the case.
Even on major platforms, from media outlets to streaming sites, there are dangers. One Strong antivirus protection will add an extra layer of security for your device and data.
Final words
Drive by Exploit This is a scam carried out through emails that aim to scare users into paying ransoms in exchange for not revealing personal information. And although it is not a virus in itself, it can carry some threats.
The good news is that the steps you should take to avoid being affected are as simple as not opening the email and much less clicking on any link that comes from an unknown recipient.
My name is Javier Chirinos and I am passionate about technology. Ever since I can remember, I have been interested in computers and video games, and that passion has turned into a job.
I have been publishing about technology and gadgets on the Internet for over 15 years, especially in mundobytes.com
I am also an expert in online marketing and communication and have knowledge in WordPress development.