Thursday, 14 November 2019
Researchers have discovered a new kind of social engineering attack targeting organizations in Germany, Italy, and the US by delivering malicious payloads with finance-related lures in local languages. According to cybersecurity vendor Proofpoint, the email phishing campaigns — discovered between October 16 and November 19 — impersonate the German Federal Ministry of Finance and the Italian Ministry of Taxation using malicious Microsoft Word attachments, which when opened, downloads and installs the Maze ransomware payload onto the target’s system. In addition to luring unsuspecting victims with notifications of tax refunds and law enforcement procedures to avoid tax penalties, the threat actor…
This story continues at The Next Web
