Security News > 2022 > May > German automakers targeted in year-long malware campaign
A years-long phishing campaign has targeted German companies in the automotive industry, attempting to infect their systems with password-stealing malware.
These sites are used to send phishing emails written in German and host the malware payloads downloaded to targeted systems.
Researchers at Check Point discovered this campaign and published a technical report where they presented the details of their findings.
According to the report, the campaign started around July 2021 and is still ongoing.
Check Point says they could trace these attacks to 14 targeted entities, all German organizations that had some connection to the auto-making industry.
The threat analysts were able to find links to a different phishing operation targeting customers of the Santander Bank, with sites supporting that campaign hosted on an Iranian ISP. In summary, there's a good chance that Iranian threat actors orchestrate the campaign, but Check Point doesn't have enough evidence for attribution.