New virus is hiding in millions of computers in Vietnam

According to Bkav’s statistics, 1 in 10 computers has an SMB vulnerability and is at risk of being infected with SPECTRALVIPER. Through a vulnerability in the SMB protocol on Microsoft Windows, hackers penetrated the system and deployed SPECTRALVIPER as a backdoor to maintain a connection to the infected device. On the victim’s computer, they continue their malicious behavior such as executing malicious code, accessing and stealing data …

Cybersecurity experts recommend that users update the patch as soon as possible, by going to Windows Update → Check for updates to check for the latest patches; and promptly back up important data.

For organizations and businesses, it is necessary to deploy additional network security monitoring solutions such as firewalls, SOC (network security monitoring center), immediately detect abnormalities for timely response and handling.

When detecting or suspecting a SPECTRALVIPER virus attack, businesses should contact network security specialists for assistance in reviewing the entire system including servers, workstations and cloud systems, in order to thoroughly disassemble the malicious code.