Zeus Panda Advanced Banking Trojan Gets Creative to Scam Affluent Victims in Italy

Cofense Intelligence™ recently observed a sample of Zeus Panda which, upon further research, revealed the malware has been increasingly employing a very creative tactic. This crafty malware variant distracts its victims while quietly draining the victims’ bank accounts, even those accounts that employ additional security mechanisms such as Multi-Factor Authentication. After transferring funds, the malware then masks any evidence that the illicit transactions ever occurred. This tactic ensures that victims with the deepest pockets will remain in the dark as their bank accounts are silently liquidated.

Attackers Use a Bag of Tricks to Target Greek Banking Customers

Recently, the Cofense™ Phishing Defense Center has observed a phishing campaign targeting Greek-speaking users and customers of Alpha Bank. Alpha Bank is the fourth-largest Greek bank. We observed threat actors using multiple tactics to gain login credentials which include user names, passwords, and secret questions. This information would allow threat actors to access unsuspecting victims’ accounts draining funds and perhaps reusing those credentials on other websites.

Another Global Phishing Campaign Distributes Malware Via Fake Invoices

On Thursday June 14th, the Cofense™ Phishing Defense Center (PDC) noted a campaign targeting UK customers with several emails containing the same subject, “Invoice INV-03056,” and prompting the user to view a supposed invoice. The next day, we saw a very similar campaign that delivered French language phishing emails. Upon analyzing the emails, the PDC notified customers that received them, so they could respond as needed. We also notified all our UK customers of the IOC’s.

The Washington Post Names Cofense a 2018 Top Workplace

Distinguished Best Places to Work Award Marks Third Consecutive Workplace Win for Cofense This Year

Leesburg, VA – June 22, 2018 – Cofense™, the leading provider of human-driven phishing defense solutions worldwide, has been awarded a 2018 Top Workplaces honor by the Washington Post for the second year in a row. This fifth annual list honors the top 150 companies to work for in the Greater Washington D.C. area, with Cofense recognized as one of only four pure-play cybersecurity companies and 53rd overall on the list.

The FBI’s Global Business Email Compromise (BEC) “Wire-Wire” Bust: A Personal Perspective

Last week, the FBI announced it had busted a business email compromise (BEC) racket that raked in millions of dollars in fraudulent wire transfers secured through email-based cyberattacks. The Bureau, along with federal and overseas partners, arrested 74 people, seized over $2M, and disrupted and recovered another $14M in phony wire payments.

Targeting of UK User Financial Accounts Has Surged in Past Two Months

Since this April, Cofense Intelligence™ has observed a sustained increase in the financially motivated targeting of United Kingdom-based users with phishing lures imitating brands like Her Majesty’s Revenue & Customs (HMRC), Lloyds Bank, and HSBC Bank. The most common final payloads delivered by these campaigns are designed to compromise victims’ financial accounts and provide illicit access to financial information. This surge in targeting almost certainly represents a stage in the “whack-a-mole” strategy long employed by threat actors: expand campaigns against a segment of the vast vulnerable attack surface until those users catch on to the threat, then move to the next target.

Cofense Triage Named One of the Best Security Software Solutions of 2018 by CSO Online

Phishing-specific incident response platform is regarded by independent industry-experts as one of the most advanced defenses against phishing

LEESBURG, VA – June 14, 2018: Cofense™, the leading provider of human-driven phishing defense solutions worldwide, announced today their phishing-specific incident response platform, Cofense Triage™, was named one of the best security software solutions of 2018 by CSO Online. The roundup includes 12 cutting-edge solutions that were rigorously tested and independently reviewed by CSO and are considered to be among the overall best security solutions available in 2018.