Looking for new angles to socially engineer employees working from home under COVID-19 conditions, attackers have devised a new phishing campaign that distributes emails that look as if they were generated by Private Branch Exchange (PBX), a legacy technology that integrates with employees’ email clients so they can receive their voicemail recordings.
In a company blog post on Thursday, Ironscales reported that the operation, discovered by its researchers last month, has threatened nearly 100,000 mailboxes around the world, reaching enterprises across multiple sectors.
PBX is a useful tool for employees who lack convenient access to their office landlines. Aware of this, malicious actors are now crafting email subject lines designed to trick recipients into thinking they have received a new voice message.
“The attackers are looking to get the recipient to open the malicious attachment to drive to a fake landing page for credential harvesting. The recipient has to enter their O365 login credentials to access the voicemail recording,” an Ironscales spokesperson told SC Media in an email interview.
In some cases, the phishing actors use highly targeted subject lines that include a specific company ..
Support the originator by clicking the read the rest link below.
