Cyberthieves are impersonating banks to send bogus "secure" bank email messages.
A spate of bogus "secure message" emails from financial institutions are making the rounds, following the high-profile Equifax breach, according to a report released today by Barracuda.
Over the past month, variants of the "secure message" email attacks have included malicious Word document attachments that rewrite directory files in users' computers once opened, according to Barracuda's Threat Spotlight report.
In some of these cases, depending on the script, the malware will remain dormant to avoid anti-virus detection when downloaded or opened but will spring into action later – potentially as ransomware.
Techniques used in these fraudulent "secure message" emails include impersonation of financial institutions, spoofed email domains and phishing attacks to get users to open the attachments or click on the links, the report notes.
Read more about the bogus "secure messages" here.
Join Dark Reading LIVE for two days of practical cyber defense discussions. Learn from the industry’s most knowledgeable IT security experts. Check out the INsecurity agenda here.
About the Author(s)
You May Also Like
Guarding the Cloud: Top 5 Cloud Security Hacks and How You Can Avoid Them
April 4, 2024Cybersecurity Strategies for Small and Med Sized Businesses
April 11, 2024Defending Against Today's Threat Landscape with MDR
April 18, 2024Securing Code in the Age of AI
April 24, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024Black Hat Asia - April 16-19 - Learn More
April 16, 2024