AppRiver Update

Cybersecurity News and Threat Intelligence for Business

Phishing Attacks Abuse Microsoft Office Surveys

on July 24, 2019 | by David Pickett | microsoft 365, advanced email security, phishing

While many malicious attackers have been busy exploiting Microsoft Azure to launch phishing and malware attacks, lesser skilled actors have increasingly turned to Microsoft Excel or Forms online surveys. It's extremely easy to craft a phishing site using the built-in survey template that Excel or Fo ... read more

Spy MAX Android RAT Targets Luxury Business Sector

on June 05, 2019 | by David Pickett | android, malware, advanced email security

On June 4, 2019, AppRiver's Advanced Email Security filter began to quarantine low volume waves of highly targeted attacks directed toward businesses who operate in the luxury services sector. Examples of these businesses include yacht brokers, executive housekeeping and staffing providers, and som ... read more

THREAT ALERT - Malware Being Hosted On Azure

on May 30, 2019 | by David Pickett | malware, web security, advanced email security

THREAT ALERT - AZURE CURRENTLY HOSTING MALWAREOn Sept. 7, 2018, we first detailed how malicious attackers abused Azure's Custom Domain Name registrations to host credential phishing sites. On April 29, 2019, we released information on how compromised user data was exposed from attacks originating fr ... read more

Business Email Compromise Attacks via Name Imperso…

on May 06, 2019 | by David Pickett | advanced email security, email fraud, impersonation

Name impersonation attacks have exploded in popularity over the past few years. They cost malicious actors little time, infrastructure, or sophistication. The FBI's Internet Crime Complaint Center recently reported over 900 complaints a day in 2018 and $2.7 billion in American losses alone. It's ext ... read more

Microsoft Azure Customized Domain Name Phishing At…

on April 29, 2019 | by David Pickett | advanced email security, phishing

THREAT ALERT UPDATE: Cybercrooks Abusing Azure Custom Domain Name Feature On Sept. 7, 2018, we detailed how malicious attackers abuse Microsoft Azure's Custom Domain Name registrations to host credential phishing sites. This type of "living-off-the-land" attack utilizes phishing sites which reside o ... read more

Phorphiex/Trik Botnet Campaign Leads to Multiple I…

on April 08, 2019 | by David Pickett | advanced email security, banking trojan, cryptojacking, Ransomware

Malware Campaign Packs a Strong Payload Punch There are few botnets with the capability to send tremendous volumes and pack an infection chain as malicious as what our filters have caught from the Phorphiex Worm/Trik botnet this year. For 2019, the Mealybug threat group has garnered the most media a ... read more

Dream Market - Top Dark Web Marketplace Shutting D…

on March 27, 2019 | by David Pickett | advanced email security, dark web news

Dream Market Shutting Down Come April 30, 2019, one of the Dark Web's top marketplaces will go dark according to a message on the site. But reasons behind the site's shuttering are the subject of speculation. The Dark Web marketplace, which opened in 2013, has grown into one of the largest and most ... read more

Phishing Threatens Deadly Viruses

on January 21, 2019 | by David Pickett | advanced email security

A new phishing campaign caught our attention recently due to the unique wording and varying tactics it uses in this "Security Alert." It threatens that the recipient's mailbox is infected with 3 deadly viruses and will shutdown if the warning is ignored. Let's take a quick look at this credential-ha ... read more

Email Bombs Disguise Fraud - Distributed Spam Dist…

on January 14, 2019 | by David Pickett | advanced email security

Email Bombs Continue to Disguise Fraud Email bombs are a type of Denial of Service (DoS) attack. Victims face an uncontrollable deluge of messages quickly filling up their inbox when the attack begins. With enough volume, the attack renders the victims mailbox useless. Victims struggle to make sense ... read more

Sextortion vs Bombtortion Hoaxes

on December 14, 2018 | by David Pickett | advanced email security

Sextortion vs Bombtortion On Dec. 13, bomb-threat hoaxes via email sparked law enforcement agencies around the world to chase down nonexistent devices. Many researchers and media outlets were quick in observing the similarity the bomb threats shared with sextortion campaigns. While the sextortion th ... read more