Wednesday December 16, 2020

Back in ancient Greek times, armies used the trojan horse as a disguise to infiltrate enemy lines.  The soldiers within the trojan horse laid siege to their enemies while their enemies had no suspicion.  Today, a trojan horse malware is no different.  This form of malware sneaks into your systems and then lays siege to your applications and sensitive information.  Recently, a new trojan snuck its way into systems and targeted browser credentials and Outlook files.



The threat group, AridViper developed this new trojan, named PyMicropsia.  Python constructs this trojan and is used because of its ability to interact with windows systems.  This trojan in particular can upload files, steal browser credentials, tamper with browsing history, take screenshots, key log, kill processes, collect files from computer and USB drives, delete files, execute commands, record audio, file exfiltration, and tampering with Outlook files and processes.  Basically, PyMicropsia does most of the capabilities you fear in any malware.

Like any other trojan, PyMicropsia disguises itself as a friendly file or link. Once you unknowingly download or obtain the malware, it runs a loop to start its different threats and tasks with goals of breaching, tampering, and collecting data.  It runs some of its functions periodically in order to not be detected.


Avoiding PyMicropsia and Other Trojans

Getting a trojan will ruin anyone’s day pretty fast by infecting your computer and valuable data.  If the trojan has some of the capabilities like PyMicropsia, it will even record you, tamper with your files, and send data to the attacker.  Luckily, anyone can follow some pretty simple steps in order to protect themselves from this nightmare.

Firstly, you must be aware that a trojan needs you to give it permission into your system.  For instance, be aware of any email attachments or unfamiliar links you can click on.  Be sure that you received the email attachment from a trusted sender.

Next, be sure to keep all of your software and applications up-to-date.  If not, your programs might have bugs or vulnerabilities that the developers have not addressed yet.  These vulnerabilities leave security holes that the trojan can exploit.

Finally, one of the most safest ways to keep your system is to download antivirus and antimalware software.  These applications will scan your computer’s file systems for any form of malicious program.  You can even use these types of applications to scan individual files to determine their safety.


As we progress through the 2020 holiday season, stay aware and click responsibly.  Groups like AridViper develop malicious programs like PyMicropsia to exploit you to breach your system and then collect and tamper with your data.  Keep yourself protected from these programs by following those few simple steps.