Key Points
What you'll learn in this notification
- Targeting Not for Profit and Housing sectors predominantly in the UK
- Distributed via Biglobe with AWS S3 buckets hosting HTML pages
- The primary intent is exfiltrate sensitive data
Mimecast Threat Researchers have observed a phishing campaign using the lure of a missed package delivery to trick users into clicking malicious links and stealing financial information. The campaign is being distributed via Biglobe, a Japanese telecommunications company frequently exploited by threat actors. The attackers capitalise on underground marketplaces such as fishersender[.]com to purchase compromised accounts, granting them legitimate access to Biglobe's infrastructure. This access enables them to send malicious emails that evade most email authentication protocols.
Please click here to read the entire article.
We welcome your questions; please ask them by posting a comment below.
Dimakatso Makinta
