Targeted Malware on the rise

 

Ever wondered what a “spear phishing” is ?

Or a “targeted malware” ?

See below:

It is an email targeted to a member of an organization, which is made to look as legitimate as possible.

The difference between normal phishing and malware emails and a targeted one is that the contents of the emails are referring to locations or persons of the organization being targeted.

In this case, Avira: as you can see below, there are apparent links to internal locations.

Of course, they are all fake (like in phishing). In reality, they point to malicious documents and locations which have nothing to do with the company.

 

The interesting part here is that the email is made to look as if I send the first email and this “Cameron” is replying to my email.

This is social engineering to its best.

Avira will block the content as W2000M/Dldr.Agent.CG and the URLs.

 

Related Posts

“Independent” support hotlines and how to deal with them (updated: who is in the picture?)

I got contacted by “Anatha anatha”, a support specialist ( :))) – can’t stop laughing) who is offering “free” support to Avira Antivirus customers. As the description says, they are “an independent Support Provider for Avira Antivirus” and they have a free telephone number (+ 49-800-181-0338) for all customers in Germany. A simple search for […]

Avira Techblog is online

At the beginning of this year Avira opened to the public the Technical blog: http://techblog.avira.com We publish there news which are too technical to be displayed on the www.avira.com page. I publish quite a lot things about Spam and Phishing. Have a look at it: http://techblog.avira.com There is also RSS Feed support: http://techblog.avira.com/feed/en/

Preventing Attacks and Securing the Supply Chain in the Security Software Industry

The security software industry plays a vital role in safeguarding sensitive data and protecting digital infrastructure. However, the industry itself faces a significant threat from supply chain attacks. Supply chain attacks occur when cybercriminals target vulnerabilities within the supply chain to compromise software or hardware products before they reach the end-users. By infiltrating the supply […]