An email with the subject of FW: Important BACs documents pretending to come from RBS BACs <GRGBACspaymentsdelivery@rbsdocuments.co.uk> with a malicious word doc spreadsheet attachment delivers malware. At this stage I don’t know if these are they usual Dridex banking payload or the Kegotip banking malware we saw yesterday. These look like … Continue reading →