This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of ” Confirm account status ” pretends to come from TD Bank but actually comes from “J.McMillan@tdbanksec.com” which is a look-a-like, typo-squatted or other domain that can easily be misidentified, mistaken or confused with the genuine site. These have a malicious office file attachment. Today they have returned to using word docs. Again this is targeted at North American recipients rather than UK ones. I was sent the email via our submissions system, but the … Continue reading →