Today, researchers at Avanan, a Check Point Company published their latest blog post discussing how hackers are sending messages directly from Soda PDF, a popular PDF editing tool commonly seen in BEC 3.0 attacks, to send emails that encourage users to call a phone number, where money will be attempted to be stolen.
In this attack, an email is sent directly via Soda PDF as an invoice, and contains a download link that goes directly to Soda PDF. In hopes of extracting finances, hackers provided a number for the end-users to call if they believed there had been an error. Calling the number not only leads victims to provide credit card information, but also saves the telephone number for future scams.
You can find the blog post here: https://www.avanan.com/blog/using-legitimate-pdfs-for-bec-3.0-attacks?hs_preview=ZFbmDiTP-119400800417
Hackers Take Over Legitimate Accounts in Latest Phishing Scheme to Reroute Direct Deposit Payments
Posted in Commentary with tags Avanan on June 22, 2023 by itnerdResearchers at Avanan, A Check Point Company, have released their latest blog discussing how hackers are rerouting finances into different accounts. In this attack, hackers are taking over legitimate email accounts and sending out emails to the finance department or HR requesting to change banking information on payroll to the account of the hacker’s choice.
You can read the blog post here.
Leave a comment »