Cybersecurity News in Asia

Features
- Featured
  
  Enhancing data protection with AI
  
  Tuesday, November 5, 2024, 9:59 AM Asia/Singapore | Data Protection, Features, Newsletter
- Featured
  
  Understanding Malaysia’s Cyber Security Act 2024 through the eyes of NACSA
  
  Monday, November 4, 2024, 10:54 AM Asia/Singapore | Features, Newsletter
- Featured
  
  Addressing the blind spots in IT, OT and IoT networks
  
  Tuesday, October 22, 2024, 3:22 PM Asia/Singapore | Features, IoT Security
News
- Featured
  
  State of security and automation in software development
  
  Tuesday, November 5, 2024, 10:56 AM Asia/Singapore | News, Software Development Lifecycle Security
- Featured
  
  Beware of elaborate malvertisements campaigns on social media
  
  Monday, November 4, 2024, 12:18 PM Asia/Singapore | News, Newsletter
- Featured
  
  Here is one firm’s snapshot of ransomware trends for September
  
  Monday, November 4, 2024, 11:14 AM Asia/Singapore | News, Newsletter
Opinions
Tips
Whitepapers
Awards 2024
Directory
E-Learning

News

Unusual new phishing attack trend discovered

By CybersecAsia editors | Wednesday, August 21, 2024, 4:15 PM Asia/Singapore

Although the approach remains the same, this new type of attack is more evasive, and exfiltrates more data

A new wave of phishing attacks featuring an advanced, stealthy technique to exfiltrate a wide range of sensitive information has been discovered.

A typical attack begins with a phishing email encouraging the recipient to open an attached purchase order. The attachment contains an ISO disc image file. Inside that is an HTML application file that in turn downloads and executes a series of malicious payloads by virtue of not being limited by the security features of a web browser.

The final payload is an infostealer (in this case an obfuscated and encrypted Python script that cleans up after its operations and then deletes itself), which goes through various levels of decoding and decrypting to get to the final code. The infostealer can collect, ZIP and exfiltrate a wide range of sensitive data to a remote email account, including but is not limited to:

PDF files and directories
browser data such as session cookies and saved credit card details
bitcoin-related extensions
web browsing histories (and MasterKeys of Chrome, Edge, Yandex, and Brave browsers)

The stolen data is subsequently transmitted to a remote email account as a zipped attachment.

According to the researchers from Barracuda who discovered this trend, it is unusual to see infostealers designed to collect and exfiltrate such a wide range of information. Said its Manager/Threat Analyst Saravanan Mohan: “Most phishing attacks are associated with data theft, but here we are looking at an attack designed for extensive data exfiltration. Some (of the stolen data) can potentially be leveraged in further malicious activity, such as lateral movement or financial fraud.”

While the stealth techniques and extent of data theft are unusual and sophisticated, the procedures for protection against such attacks remain standard: continual education of employees on phishing awareness and cyber hygiene; effective email scanning solutions to weed out suspicious communications; and best practices in network cybersecurity.

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Mitigating Ransomware Risks with GRC Automation
In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper
2024 Gartner® Magic Quadrant™ for SD-WAN
Gartner® has positioned Fortinet highest for Ability to Execute for the fourth year in a …Download Whitepaper
5 Cybersecurity Dashboards for CISOs
Are you ready to transform your cybersecurity approach? With Commugen's 5 Cybersecurity Dashboards for CIOs, …Download Whitepaper
CISO’s Toolbox for Managing AI Risks
As AI reshapes industries, it also introduces a new frontier of risks that demand immediate …Download Whitepaper

Middle-sidebar-banner

Case Studies

Unlock Your Guide to Securing Business Critical Secrets
Is your organization effectively managing access to sensitive secrets like credentials, API keys, and certificates …Read more
RBL Finserve boosts control of growing number of identities in its multi-cloud environment
By adopting a third-party identity security platform, the Indian financial institution expects to leverage zero …Read more
MAX Solutions safeguards data for digital transformation with Veeam
One of the largest employment providers in Australia needed to protect data while reducing complexity …Read more
Adding secure automatic multi-factor authentication boosts customer experience: Tiger Brokers
Can tightening identity security degrade customer experience? In this case study, an online trading platform …Read more

Cybersecurity News in Asia

Featured

Enhancing data protection with AI

Featured

Understanding Malaysia’s Cyber Security Act 2024 through the eyes of NACSA

Featured

Addressing the blind spots in IT, OT and IoT networks

Featured

State of security and automation in software development

Featured

Beware of elaborate malvertisements campaigns on social media

Featured

Here is one firm’s snapshot of ransomware trends for September

Unusual new phishing attack trend discovered

Although the approach remains the same, this new type of attack is more evasive, and exfiltrates more data

Related Posts

Leave a reply Cancel reply

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Middle-sidebar-banner

Case Studies

Bottom sidebar