Cofense Intelligence™ recently observed a sample of Zeus Panda which, upon further research, revealed the malware has been increasingly employing a very creative tactic. This crafty malware variant distracts its victims while quietly draining the victims’ bank accounts, even those accounts that employ additional security mechanisms such as Multi-Factor Authentication. After transferring funds, the malware then masks any evidence that the illicit transactions ever occurred. This tactic ensures that victims with the deepest pockets will remain in the dark as their bank accounts are silently liquidated.
Recently, the Cofense™ Phishing Defense Center has observed a phishing campaign targeting Greek-speaking users and customers of Alpha Bank. Alpha Bank is the fourth-largest Greek bank. We observed threat actors using multiple tactics to gain login credentials which include user names, passwords, and secret questions. This information would allow threat actors to access unsuspecting victims’ accounts draining funds and perhaps reusing those credentials on other websites.
Every week you read about a new phishing-inflicted breach. Despite heavy spending on perimeter security, malicious emails still get through.
Here’s something that can help and, best of all, costs nothing. It’s the latest in a blitz of Cofense phishing awareness innovations.
On Thursday June 14th, the Cofense™ Phishing Defense Center (PDC) noted a campaign targeting UK customers with several emails containing the same subject, “Invoice INV-03056,” and prompting the user to view a supposed invoice. The next day, we saw a very similar campaign that delivered French language phishing emails. Upon analyzing the emails, the PDC notified customers that received them, so they could respond as needed. We also notified all our UK customers of the IOC’s.
Distinguished Best Places to Work Award Marks Third Consecutive Workplace Win for Cofense This Year
Leesburg, VA – June 22, 2018 – Cofense™, the leading provider of human-driven phishing defense solutions worldwide, has been awarded a 2018 Top Workplaces honor by the Washington Post for the second year in a row. This fifth annual list honors the top 150 companies to work for in the Greater Washington D.C. area, with Cofense recognized as one of only four pure-play cybersecurity companies and 53rd overall on the list.
We all know phish aren’t just sent to corporate email accounts, yet this is what we hear about most often in the news. The reason, at least in part, is because headlines highlighting millions of dollars lost or millions of accounts compromised make for better news than “Man Has Personal Savings Account Drained After Clicking Malicious Link.”
Last week, the FBI announced it had busted a business email compromise (BEC) racket that raked in millions of dollars in fraudulent wire transfers secured through email-based cyberattacks. The Bureau, along with federal and overseas partners, arrested 74 people, seized over $2M, and disrupted and recovered another $14M in phony wire payments.
Since this April, Cofense Intelligence™ has observed a sustained increase in the financially motivated targeting of United Kingdom-based users with phishing lures imitating brands like Her Majesty’s Revenue & Customs (HMRC), Lloyds Bank, and HSBC Bank. The most common final payloads delivered by these campaigns are designed to compromise victims’ financial accounts and provide illicit access to financial information. This surge in targeting almost certainly represents a stage in the “whack-a-mole” strategy long employed by threat actors: expand campaigns against a segment of the vast vulnerable attack surface until those users catch on to the threat, then move to the next target.
Phishing-specific incident response platform is regarded by independent industry-experts as one of the most advanced defenses against phishing
LEESBURG, VA – June 14, 2018: Cofense™, the leading provider of human-driven phishing defense solutions worldwide, announced today their phishing-specific incident response automation software, Cofense Triage™, was named one of the best security software solutions of 2018 by CSO Online. The roundup includes 12 cutting-edge solutions that were rigorously tested and independently reviewed by CSO and are considered to be among the overall best security solutions available in 2018.