This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “FW: Updated Account Transactions ” pretends to come from somebody named Michael L. Lucia at Bank of America Merrill Lync but actually comes from “michael.lucia@secmail-bofa.com” which is a look-a-like, typo-squatted or other domain that can easily be misidentified, mistaken or confused with the genuine site. These have a malicious office file attachment, this one has an XLS (Excel Spreadsheet) file attachment. Bank of America Merrill Lync has not been hacked or had their email or … Continue reading →