Security News > 2021 > October > Attackers Hijack Craigslist Emails to Bypass Security, Deliver Malware
Musical instruments, motorcycle parts and now malware - Craigslist really does have it all.
The Craigslist internal email system was hijacked by attackers this month to deliver convincing messages messages, ultimately aimed avoiding Microsoft Office security controls to deliver malware.
Sent from an authentic Craigslist IP address, the emails informed users that a published ad of theirs included inappropriate content and violated Craigslist.
According to INKY's report, threat actors were able to abuse that Craigslist email system and and deliver authentic-looking phishing emails to users who were actively trying to sell something on the site.
The phishing emails looked like a notice from Craigslist that the user's ad contained inappropriate content.
INKY advised Craigslist users to be on the lookout for these kinds of attacks, and added that any emails that seem unusual should be viewed as potentially malicious.
News URL
https://threatpost.com/attackers-hijack-craigslist-email-malware/175754/
Related news
- Snowblind malware abuses Android security feature to bypass security (source)
- New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration (source)
- Military-themed Email Scam Spreads Malware to Infect Pakistani Users (source)
- PKfail Secure Boot bypass lets attackers install UEFI malware (source)