New signed campaign to trick victims’ antivirus, allowing them to download and install the malware via attachment.
Technical analysis by the Malware Hunter JAMESWT
French-speaking AOL users targeted by a phishing campaign. The bait is a false account block for suspicious activity. The link in the email points to a fake provider’s site. Goal: steal credentials
A fake temporary blocking of the AOL account is the theme of a new cybercrime phishing campaign targeting French-speaking users. In the email, which refers to a potentially suspicious activity registered, the potential victim is asked to open a link to log in and reactivate the service.
This, in fact, points to a fake provider page where you can enter your username and password.
Any combination, however, will be wrong. In the meantime, the credentials will have been stolen.