Spam
An email that poses as a notification of a possible account compromise carries an attachment that is detected as DRIDEX malware. To convince users to open the attachment, it instructs recipients to that the attachment contains further details of unusual account behavior.
Read moreJavaScript downloaders, like JS_NEMUCOD variants, are making noise with its widespread distribution of malware such as ransomware and DRIDEX. These downloaders are usually found in spam as attachments.
Read moreIt's tax season once more and like the inevitable turning of the tide, there are several spam campaigns using this particular social engineering hook. In this spam campaign, the sender is posing as an agent of the Internal Revenue Service (IRS), and scaring recipients into opening their malicious attachments.
Read moreA new wave of spam that uses *.rar *.
Read moreA JavaScript malware is seen in a spam outbreak involving a spammed message pretending to be an invoice notification email with suspicious ZIP attachments. As per the usual route of spam, the body of the message tries to convince the reader to open the attachment by alerting them to alleged unpaid invoices to their account and asking the recipient the reason of non-payment.
Read moreWe are currently seeing huge volumes of malicious JavaScript attachments being spammed at users through email. This particular spam campaign uses the typical social engineering lures like invoice notifications, payment slips, payment confirmations, tax related notifications, billing statements, purchase orders and the like.
Read moreSpammed messages that go as zamowienie, which translates to Order in English, are seen circulating with a .ZIP attachment.
Read moreThe use of bogus invoices is one of the common social engineering ploys in spam runs to date. In our monitoring we spotted another spammed messages that pose as an invoice statement for a due payment.
Read moreA new wave of DRIDEX spam run is seen in the wild. Much like its predecessor, these recent spammed messages pretend as invoice to lure the users in opening the attachment.
Read moreAs tax season draws closer, cybercriminals are wasting no time in leveraging it. We recently spotted a DRIDEX-related spam run that pretends to come from United Kingdom’s own agency for collecting taxes, HM Revenue & Customs.
Read more