Cybersecurity News in Asia

Features
- Featured
  
  Will the billions lost in financial scams lead to better vigilance and accountability?
  
  Tuesday, November 19, 2024, 2:30 PM Asia/Singapore | Features, Newsletter
- Featured
  
  Impact of downtime and security workflows on cloud strategies
  
  Tuesday, November 19, 2024, 2:26 PM Asia/Singapore | Features, Newsletter
- Featured
  
  Being ready – when and where ransomware may strike next
  
  Tuesday, November 19, 2024, 2:15 PM Asia/Singapore | Features, Malware & Ransomware
News
- Featured
  
  Skyrocketing identity theft and deepfake abuse: a sign of more to come?
  
  Friday, November 22, 2024, 11:19 AM Asia/Singapore | News, Newsletter
- Featured
  
  No limit for number of blocked sites in Singapore
  
  Tuesday, November 19, 2024, 9:15 AM Asia/Singapore | News, Newsletter, Opinions
- Featured
  
  Banking professionals least likely to use generative AI at work: analysis
  
  Monday, November 18, 2024, 10:28 AM Asia/Singapore | News, Newsletter
Opinions
Tips
Whitepapers
Awards 2024
Directory
E-Learning

News

Unusual new phishing attack trend discovered

By CybersecAsia editors | Wednesday, August 21, 2024, 4:15 PM Asia/Singapore

Although the approach remains the same, this new type of attack is more evasive, and exfiltrates more data

A new wave of phishing attacks featuring an advanced, stealthy technique to exfiltrate a wide range of sensitive information has been discovered.

A typical attack begins with a phishing email encouraging the recipient to open an attached purchase order. The attachment contains an ISO disc image file. Inside that is an HTML application file that in turn downloads and executes a series of malicious payloads by virtue of not being limited by the security features of a web browser.

The final payload is an infostealer (in this case an obfuscated and encrypted Python script that cleans up after its operations and then deletes itself), which goes through various levels of decoding and decrypting to get to the final code. The infostealer can collect, ZIP and exfiltrate a wide range of sensitive data to a remote email account, including but is not limited to:

PDF files and directories
browser data such as session cookies and saved credit card details
bitcoin-related extensions
web browsing histories (and MasterKeys of Chrome, Edge, Yandex, and Brave browsers)

The stolen data is subsequently transmitted to a remote email account as a zipped attachment.

According to the researchers from Barracuda who discovered this trend, it is unusual to see infostealers designed to collect and exfiltrate such a wide range of information. Said its Manager/Threat Analyst Saravanan Mohan: “Most phishing attacks are associated with data theft, but here we are looking at an attack designed for extensive data exfiltration. Some (of the stolen data) can potentially be leveraged in further malicious activity, such as lateral movement or financial fraud.”

While the stealth techniques and extent of data theft are unusual and sophisticated, the procedures for protection against such attacks remain standard: continual education of employees on phishing awareness and cyber hygiene; effective email scanning solutions to weed out suspicious communications; and best practices in network cybersecurity.

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Mitigating Ransomware Risks with GRC Automation
In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper
2024 Gartner® Magic Quadrant™ for SD-WAN
Gartner® has positioned Fortinet highest for Ability to Execute for the fourth year in a …Download Whitepaper
5 Cybersecurity Dashboards for CISOs
Are you ready to transform your cybersecurity approach? With Commugen's 5 Cybersecurity Dashboards for CIOs, …Download Whitepaper
CISO’s Toolbox for Managing AI Risks
As AI reshapes industries, it also introduces a new frontier of risks that demand immediate …Download Whitepaper

Middle-sidebar-banner

Case Studies

Unlock Your Guide to Securing Business Critical Secrets
Is your organization effectively managing access to sensitive secrets like credentials, API keys, and certificates …Read more
RBL Finserve boosts control of growing number of identities in its multi-cloud environment
By adopting a third-party identity security platform, the Indian financial institution expects to leverage zero …Read more
MAX Solutions safeguards data for digital transformation with Veeam
One of the largest employment providers in Australia needed to protect data while reducing complexity …Read more
Adding secure automatic multi-factor authentication boosts customer experience: Tiger Brokers
Can tightening identity security degrade customer experience? In this case study, an online trading platform …Read more

Cybersecurity News in Asia

Featured

Will the billions lost in financial scams lead to better vigilance and accountability?

Featured

Impact of downtime and security workflows on cloud strategies

Featured

Being ready – when and where ransomware may strike next

Featured

Skyrocketing identity theft and deepfake abuse: a sign of more to come?

Featured

No limit for number of blocked sites in Singapore

Featured

Banking professionals least likely to use generative AI at work: analysis

Unusual new phishing attack trend discovered

Although the approach remains the same, this new type of attack is more evasive, and exfiltrates more data

Related Posts

Leave a reply Cancel reply

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Middle-sidebar-banner

Case Studies

Bottom sidebar