Phishing emails, disguised as receipts from Delta Airlines, trick victims into downloading malware.

Dark Reading Staff, Dark Reading

April 20, 2017

1 Min Read

A new phishing campaign is taking advantage of consumers at a time when many are booking summer plans. Researchers at Heimdal Security discovered spam emails disguised as Delta Airlines receipts are designed to trick victims into downloading malware.

The idea is to send fake confirmation emails to consumers, who panic under the impression someone booked a ticket using their identity. To try and solve the problem, they click the email's embedded links. This redirects them to compromised websites with Word docs infected with Hancitor malware, which acts as a "bridge" for additional malware downloads.

Downloading and opening the Word docs will activate the malware and connect your PC to malicious servers. These are designed to download even more malware, which could steal sensitive information like banking data from your machine.

Read more details here.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights