Unique Email Attacks of the Week: October 16, 2023
Abnormal Intelligence provides unique insights about today’s modern email attacks so you can best prepare your organization. Here are six attacks that we observed over the last week.?
Multi-Layered Credential Phishing Attempt Features a Compromised Domain and a Masked Phishing Link
After compromising a Titan Worldwide domain, an attacker pastes previous conversations and a masked phishing link into an email in an attempt to steal sensitive information.
Likely AI-Generated Credential Phishing Attack Features Impersonation of Medicare Australia
An attacker pretends to be from Medicare Australia and informs the recipient that their Medicare services have been suspended due to insufficient contact information.
Salesforce Impersonator Utilizes Look-Alike Domain in Fake Billing Scam
An attacker creates a domain visually similar to Salesforce [.]com, engages the target, and then forwards the thread to another colleague, heightening the chances of a successful scam.
National Health Service Spoofer Compromises Domain and Sends Masked Phishing Link in PNG Attachment
An attacker uses a legitimate NHS domain and Microsoft SharePoint to trick a recipient into clicking on a masked phishing link and exposing sensitive information.
Bank of America Impersonator Utilizes Google Drive to Send Masked Phishing Link Embedded in PDF Attachment
By creating a sense of urgency around unauthorized account access and using a sending domain that includes "Bank of America," the attacker aims to compel the recipient to take action.
Attacker Utilizes DocuSign to Send Masked Phishing Link Embedded in a PNG Attachment
By using a legitimate document-sending service, the attacker is counting on the recipient to engage with the attachment and expose sensitive information.
For more unique attacks, visit the Attack Library?
For more attack insights and threat research, visit Abnormal Intelligence