Security News > 2017 > March > Clever spear-phishing emails hit employees involved in SEC filings (Help Net Security)
2017-03-08 21:18
FireEye has flagged a sophisticated spear-phishing campaign hitting US-based businesses with emails purportedly coming from the US Securities and Exchange Commission (SEC). The emails look like they’ve been sent by a SEC employee, address the recipients by name, and urge them to download a Word document containing important changes regarding Form 10-K, an annual financial performance report required by the organization. The malware The malicious attachment drops two PowerShell backdoors. One is fileless and resides … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/6gk3QzaGQ50/
Related news
- Phishing Campaigns Use Real-Time Checks to Validate Victim Emails Before Credential Theft (source)
- Phishing emails delivering infostealers surge 84% (source)
- CoGUI phishing platform sent 580 million emails to steal credentials (source)
- Horabot Malware Targets 6 Latin American Nations Using Invoice-Themed Phishing Emails (source)