This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “ALERT – BB Wire: Extra Due Diligence* RE: Incoming Wire Name and Account Mismatch ” pretends to come from Scotia Bank but actually comes from “penny.tam@scotiabanksec.com” or “penny.tam@scotiabank-ses.com” both of which are look-a-like, typo-squatted or other domains that can easily be misidentified, mistaken or confused with the genuine site. These have a malicious office file attachment. Today they are using XLSM Excel spreadsheet files. Again these are targeted at North American recipients, primarily Canadian. … Continue reading →