Cybercrime, Second day for the new courier-themed AgentTesla campaign
The text is identical to that of the previous day. Only the attachment, which however contains an exe file - the malware – changes.
Cybercrime, AgentTesla campaign via fake DHL email
Z attachment contains an exe file: the malware. The campaign, however, has another C2 than those of these days that use the courier as bait.
Cybercrime, RFQ from Turkey carries AgentTesla and zgRAT
The zip attachment contains an exe file: the first malware, which downloads the second. The stolen data is exfiltrated via SMTP.
Cybercrime, StrRAT e Ratty distributed as polyglots or JAR files
Deep Instinct cybersecurity experts: Victims receive a file, the malware, that is both a valid MSI and a valid JAR.
Cybercrime, “PAYMENTS.PDF” spread Dropbox phishing campaign
The lure is a fake email with the request to edit the folder “PAYMENTS”, by opening a link. It directs to a fake login page with the user legit website on the background.
Cybercrime, new SharePoint-themed phishing campaign
The goal is to steal the credentials via a fake landing page. Victims have three attempts to digit the password, all of which will be wrong.
Cybercrime, new wave of the Docusign phishing campaign via contract
The link in the email points to a fake Word page where the user is pre-set and only the password needs to be entered. Warning, it's a scam!
Cybercrime, fake Docusign email spreads a new global phishing campaign
It asks to open a link to revise an agreement. It lands to a website that simulates the victim’s organization homepage, in which the user has only to digit the password.
Cybercrime, new phishing campaign via encrypted messages
An email asks to open a link to read them. It lands to a website that simulates the victim’s organization homepage, in which the user has only to digit the password.
Cybercrime, fake Audit report bait for an HTML phishing campaign
The goal is to steal the SharePoint Online credentials via a fake platform landing page. Victims have three attempts to digit the password, all of which will be wrong.