Jump directly to the content
PICKPOCKET

Billions of Gmail and Outlook users warned over ‘double finger’ bank-drain attack – delete ‘malicious file’ now

CYBERSECURITY experts have warned that a dangerous file hidden within an email is draining crypto wallets.

Whether you have crypto or just want to protect your regular bank account, it's worth watching out for these emails and deleting them immediately.

Whether you use Gmail, Outlook, or another email provider, watch out for suspicious files lurking in emails
1
Whether you use Gmail, Outlook, or another email provider, watch out for suspicious files lurking in emailsCredit: Getty

Specialists at are referring to the crypto attack as a "DoubleFinger infection."

DoubleFinger is a type of advanced malware that downloads a crypto-stealing infection called GreetingGhoul.

According to the experts, the attack starts with an "email containing a malicious PIF file."

Victims open the attachment in the email and accidentally let the infection run loose on their devices.

READ MORE ON GMAIL

BENEFITS BONUS

Benefits calculator reveals if you're one of 8million missing out on cash

DoubleFinger can bypass security software installed on computers.

It manipulates a device until it can load GreetingGhoul crypto stealer.

GreetingGhoul detects any crypto wallets and steals information to send back to the hackers.

This gives cybercriminals control and the ability to steal funds.

Most read in Tech

Major free WhatsApp upgrade makes voice note chats WAY easier when it's noisy
'APPY DAYS!

Major free WhatsApp upgrade makes voice note chats WAY easier when it's noisy

Listen to unknown pulse deep in ocean that has baffled scientists for decades
'BIO-DUCK'

Listen to unknown pulse deep in ocean that has baffled scientists for decades

World’s oldest WRITING found in ancient tomb…but what it says is a mystery
NOTE FROM PAST

World’s oldest WRITING found in ancient tomb…but what it says is a mystery

New Android phone has IPHONE perk that NO-ONE else has - it'll make mates jealous
GOOD CALL

New Android phone has IPHONE perk that NO-ONE else has - it'll make mates jealous

The attack started with a simple mistake that all email users should be wary of.

You should never click on or download suspicious files within emails.

General anti-phishing advice could save people from this money-draining disaster and any similar attacks.

HOW TO AVOID A PHISHING SCAM

Be thorough when checking who the email is from.

Even if it looks official, double-check the email and look for any spelling mistakes or slight abnormalities in the sender's email address.

Never feel pressurised into opening an attachment and avoid clicking the phrase "enable content."

You should also be wary of links in emails.

If you're certain an email you have received is a scam, report it to your email provider and delete it.

Topics
YOU MIGHT LIKE
RECOMMENDED FOR YOU
MORE FOR YOU