Security News > 2021 > March > US taxpayers targeted with RAT malware in ongoing phishing attacks
US taxpayers are being targeted by phishing attacks attempting to take over their computers using malware and steal sensitive personal and financial information.
"The potential for damage is serious and the malware allows threat actors to gain full control over a victim's machine and steal sensitive information from users or their employers."
This ongoing phishing campaign will have more time to infect taxpayers with malware since the Treasury Department and the Internal Revenue Service announced Wednesday that the federal income tax filing due date for individuals would be extended by an additional 30 days to May 17 2021.
The malicious documents also evade traditional anti-malware virus and heuristic detections by abusing the imgur service to host the malware payloads, making it even harder to detect and block their attacks.
RAT malware used to takeover taxpayers' devices.
Both RAT strains have been spotted in attacks coordinated by state-sponsored hacking groups and financially motivated threat actors.
News URL
Related news
- Phishing platform 'Lucid' behind wave of iOS, Android SMS attacks (source)
- We Smell a (DC)Rat: Revealing a Sophisticated Malware Delivery Chain (source)
- Open-source malware doubles, data exfiltration attacks dominate (source)
- Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware (source)
- CISA and FBI Warn Fast Flux is Powering Resilient Malware, C2, and Phishing Networks (source)
- New TCESB Malware Found in Active Attacks Exploiting ESET Security Scanner (source)
- iOS devices face twice the phishing attacks of Android (source)
- Chinese snoops use stealth RAT to backdoor US orgs – still active last week (source)
- China names alleged US snoops over Asian Winter Games attacks (source)
- Midnight Blizzard deploys new GrapeLoader malware in embassy phishing (source)