Explore the latest news and trends  

Sign up for our weekly security newsletter


Be the first to receive important updates on security





Send

Personalized Spear-Phishing Attacks Ongoing to Garner Precious Company Data


Proofpoint recently said that threat actor with a financial motive whom it names TA530 has been observed targeting high-level employees and executives of companies within a unique personalized spear-phishing scam. TA530 is striking people playing high-ranking roles, in particular senior vice-presidents and chief financial officers with the aid of electronic mails having their phone numbers, work titles, names and other specifications inside the message body.

Cyber-criminals operating any spear-phishing scam don't distribute e-mails among a common mass with an aim to acquire at least some victims, however, characteristically concentrate on one particular company so as for hooking individuals in a way that they would divulge confidential information like trade secrets or military data. These personalized e-mails seem as being derived from some trustworthy entity, while showing one web-link leading onto a phony page infested with malware alternatively onto one file, which pulls down more malware.

The above truism has started getting loose ever-since 2016 began. As per Proofpoint researchers, TA530 is attacking top-positioned employees to dupe them in away that they would install a malware collection, especially the CryptoWall ransom software which encrypts precious files followed with demanding a large amount of fee for reversing the damage.

More malicious programs disseminated in the scam are Ursnif/RecoLoad POS Trojan and Ursnif ISFB banker Trojan attacking businesses within the hospitality and retail sectors. The executives targeted bear titles of director, senior VP, financial head or CFO.

Proofpoint states the details which TA530 utilizes are obtainable from public websites for e.g. LinkedIn, an organization's own website etc. The threat actor is targeting a huge number of persons working within organizations headquartered inside U.K., USA and Australia. Although these assaults depict an even bigger scaled strike compared to other spear-phishing scams, they are yet to match Locky and Dridex in magnitude. Digitaltrends.com posted this, April 6, 2016.

Disturbingly the security company believes the personalization technique won't be restricted to TA530 rather it would go beyond when hackers would know how to extract organization databases from LinkedIn and other public websites. Hence, an e-mail gateway that's secure along with end-user education is the solution for tackling this problem.

ยป SPAMfighter News - 4/13/2016

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page
Next