Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

CTOs targeted with tax-themed phishing emails carrying malware

Fbog2
Tax-themed phishing emails targeting CTOs of tech companies have been spotted by researchers at Talos, Ciscos security intelligence and research group.

The initial emails, sent from a spoofed .gov email address, claimed that the recipient's federal tax payment was received, and that they could print out a receipt: a Word document attached to the email.

This first run obviously wasn't very successful, so they changed the text for the later attempts, saying that the payment was not received and that they should download and edit the attached "confirmation file" and send it back to the sender.

In both cases, the attached file was a specially crafted Word document that instructed users to enable MS Office macros in order to view its contents (macros are disabled by default).

But, by doing that, the recipients would allow the document to drop several malicious files, which ultimately lead to a variant of the Vawtrak banking Trojan to be downloaded on the target's computer.

While I...(continued)

View All Trending Stories