The .jar attachment downloads the malware. This is a Trojan, capable of stealing credentials and loading additional malicious payloads into the victim's PC.
There is a new scam on mobile, using phishing SMS with Job offers as a lure, reinfored by a big brand name and a lot of money as salary. It’s unknown the goal of the cyber aggressors
There is a new scam on mobile, using phishing SMS with Job offers as a lure, reinfored by a big brand name and a lot of money as salary. Malwarebytes cyber security experts unveiled that the malicous link redirect to a fake Amazon site. Inside, the victim has to compile a small form with name, email, and phone number. Once all the details have been submitted, he will be redirect again to amazon.com to make things look legitimate. It’s not clear why the attackers asked for so little informations to the potential victims. Maybe they’re trying to create a big list for future phishing operations or just testing another threat to the smartphones cyber security. Using an hot theme, like the discontent linked to one’s job.
It’n not the first time that Amazon is used as a bait for phishing cyber attacks. By mail or by phone calls. The company published a guide on how identify legitimate messages
Moreover, it’s not the first time that Amazon is used as a bait for phishing cyber attacks. Whether byh SMS on mobile or by mail or phone calls. In July 2017, some users received text messages from the online shopping giant with “security codes”. In the message the scammers asked the potential victims to login to their account, otherwise them would have been suspended. In recent days many people received fake Amazon email offering them a promotional credit or recorded messages for a work-at-home job opportunity, rewarded with a lot of money. The company, following the scams, released a guide on its website “About Identifying Whether an E-mail or Webpage is from Amazon” with the aim to increase the cyber security of its customers.
Photo Credits: Malwarebytes