Russian authorities are warning of a widespread malware campaign spreading through Telegram. According to the Russian Ministry of Internal Affairs, threat actors are distributing a Trojan virus disguised as an APK file, often masquerading as a video with the enticing caption, “Is this you?”. Telegram channels report that the malicious software, dubbed ‘Mamont’, requests access to SMS and push notifications on a victim’s smartphone. Once granted, these permissions are exploited to siphon money directly from the users’ bank accounts.
Viruses and phishing attacks are becoming an everyday reality, and the rate of their proliferation is only expected to increase, warns Alexei Karpunin, IT Director and founder of the IPWK IT Management Academy.
“Technology evolves, and with it, the tools available to fraudsters grow more sophisticated. The common assumption of ‘it probably won’t happen to me’ is no longer valid. Today, these threats impact everyone from large corporations to ordinary users,” Karpunin explained to Invest Foresight.
He believes the key to protection for businesses lies in systematic employee training. It is no longer sufficient to merely distribute a cybersecurity memo. Employees must undergo mandatory digital literacy training, learning to identify phishing emails and understand the proper procedures for vetting suspicious attachments. Following this, regular drills and audits are essential. Simulated attacks help uncover vulnerabilities and identify employees who may be lax in observing security protocols. In such cases, corrective measures are necessary, not only retraining but, if needed, disciplinary action up to and including dismissal, since a single oversight can cost a corporation millions.
“It is equally important for individuals to understand their responsibilities,” the specialist emphasizes. “A smartphone with banking apps and access to government services is, in effect, the key to your personal life and finances. Links and files should only be opened if their source is unquestionably reliable, and at the first sign of doubt, it’s best to consult a specialist or a more experienced friend. One should act as cautiously as if navigating a minefield: a single careless move can have severe consequences.”
Alexei Karpunin concludes that, with cyberattacks inevitably on the rise, the only way to mitigate risks is to improve digital literacy and treat security as an integral part of everyday life.