Phishing emails, disguised as receipts from Delta Airlines, trick victims into downloading malware.
A new phishing campaign is taking advantage of consumers at a time when many are booking summer plans. Researchers at Heimdal Security discovered spam emails disguised as Delta Airlines receipts are designed to trick victims into downloading malware.
The idea is to send fake confirmation emails to consumers, who panic under the impression someone booked a ticket using their identity. To try and solve the problem, they click the email's embedded links. This redirects them to compromised websites with Word docs infected with Hancitor malware, which acts as a "bridge" for additional malware downloads.
Downloading and opening the Word docs will activate the malware and connect your PC to malicious servers. These are designed to download even more malware, which could steal sensitive information like banking data from your machine.
Read more details here.
About the Author(s)
You May Also Like
Securing Code in the Age of AI
April 24, 2024Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024