Collaborate Disseminate
The scammers & criminals get ever more creative with their phishing scams. This is one I have not seen before and could be very effective. It pretends to be a message from the UK Student Finance Body checking they have correct details to pay the pa… Continue reading Fake Student Finance Body phishing scam
A bit of a change with the Formbook malware delivery system today. An email with the subject of “Re: Payment Update” pretending to come from “Silvia.Rey@rotork.com” with a malicious word RTF doc attachment delivers Formbook. T… Continue reading Formbook delivered via “new” RTF exploit
This example is an email containing the subject of “Advice of Service Charge” saying that you have a service charge to pay of £42,243.52 is really going to give a few recipients quite a shock. This pretends to come from RBS, Royal Bank of … Continue reading Fake Royal Bank of Scotland you owe service charges of £42,243.52 tries to deliver trickbot
Yet another pretty lame email from the Trickbot gang again today. Some days I really don’t understand this gang of criminals. They go to the bother of registering various look-a-like domains to send the emails from, so they might stand a better chance … Continue reading Fake Danske Bank “FW: Insurance Documents” delivers Trickbot
Another pretty lame email from the Trickbot gang again today. Some days I really don’t understand this gang of criminals. They go to the bother of registering various look a like domains to send the emails from, so they might stand a better chanc… Continue reading Trickbot delivered via Fake HSBC Payment Advice using activeX controls in word macros
The second in today’s Lokibot campaigns hitting UK is more normal than the earlier one. However it still has a few stings and misdirections to try to confuse you. An email pretending to be a delivery notification with the subject of Re: SM-192C6… Continue reading More Lokibot malspam hitting UK today
This example is an email containing the subject of “Urgent Action is required. – Companies House eReminder Service ” pretending to come from ereminders@companieshouse.gov.uk but actually coming from “DoNotReply@gov-delivery.uk&… Continue reading fake Companies House eReminder Service delivers Trickbot
It looks like the summer holidays are over and the malware scumbags are trying out new and different delivery methods to catch us all unawares. This latest one is an email pretending to be a bank transfer notification with the subject of “Re: Pay… Continue reading Formbook malware delivered via RTF exploit downloading MSI file
Today’s first example of malware received overnight is a slightly less usual delivery method for Lokibot. The email is a common lure pretending to be a quote / Inquiry request and is nothing special. The subject is “Re: Inquiry / Quotes&… Continue reading Slightly different Lokibot delivery via embedded ole objects in rtf word doc
Today’s first malspam example is an email pretending to be a Google drive shared documents notification with the subject of Documents coming from UAE Exchange <res@fairviewres.co.uk> with a link in the email body to download a zip wh… Continue reading fake Google Drive shared documents notification