The email rar attachment contains an exe file: the first malware, which downloads the second. The stolen data is exfiltrated via SMTP.
New phishing campaign via encrypted messages. An email asks to open a link to read them. It lands to a website that simulates the victim’s organization homepage, in which the user has only to digit the password
Seven encrypted in the server are the bait for a new global phishing campaign. The goal is to steal email credentials. An email asks the user to open a link in order to read the encrypted messages.
It lands to a website that simulates the victim’s organization homepage in which the user is already pre-compiled and user has only to digit the password.
Any alphanumeric combination entered will be wrong and after three attempts the victim will be notified that the operation was successful and that the redirection to the mail server is in progress.
Everything is false, it’s just a trick to steal the credentials and to trick the user, simulating that the operation is lawful.