The cybercrime gang Magnet Goblin targets Windows and Linux users

The newest software upgrade can protect your device from the cybercrime gang Magnet Goblin. However, if you dismiss it, you are more susceptible to cyber-attacks. On top of that, the gang targets Linux and Windows users. Furthermore, they use remote access Trojans to control your device from anywhere.

Unfortunately, the locations of the threat actors are unknown. Thus, it is best to upgrade your software until researchers dismiss the alert.

Why is cybercrime increasing?

Cybercrime is increasing because it has become easier for threat actors, like Magnet Goblin, to target system vulnerabilities. After all, cyber-attacks are more frequent due to remote working, increased internet usage, and AI. Furthermore, the Magnet Goblin uses already patched software flaws, known as 1-day vulnerabilities. Thus, it is very important to keep your device up to date to counter such attacks.

Magnet Goblin used software vulnerabilities found in Ivanti Connect Secure, Magneto, Apache ActiveMQ, ConnectWise ScreenConnect, and Qlik Sense. However, they might use other applications as well. Furthermore, the malware can introduce commands, encrypt your data, and delete files. Moreover, it can adjust settings, modify connection intervals, and request more commands from the command & control server.

According to Sergey Shykevich, the Magnet Goblin doesn’t relate to any group or specific geographical location. Researchers didn’t find any state-sponsored resources. Furthermore, Magnet Goblin is looking for financial gains. They target manufacturing, energy, and healthcare organizations.

In a nutshell, you should always keep your operating system updated to avoid attacks from groups like Magnet Goblin. After all, they move very fast to implement their exploits. In addition, OS updates usually bring additional security fixes and beneficial features.

What are your thoughts? Do you keep your operating system updated? Let us know in the comments.