"Many campaigns target individuals for personal and financial data theft, but others specifically target accountants and other professionals who handle sensitive documents, have access to financial data, and are accustomed to receiving tax-related emails during this period."
"Using Certified Public Accountant (CPA) lures to deliver phishing pages associated with the Energy365 PhaaS kit to capture victims' email and password. The Energy365 phishing kit is estimated to be sending hundreds of thousands of malicious emails on a daily basis."
"Using QR code and W2 lures to target approximately 100 organizations, mainly in the manufacturing, retail, and healthcare industries located in the U.S., to direct users to phishing pages mimicking the Microsoft 365 sign-in pages and built using the SneakyLog (aka Kratos) PhaaS platform to siphon their credentials and two-factor authentication (2FA) codes."
Phishing campaigns are exploiting the urgency of the U.S. tax season to deceive individuals and professionals into revealing sensitive information. These campaigns use tactics such as fake refund notices and tax-related emails to lure victims. Attackers target both individuals and accountants, utilizing phishing kits like Energy365 and SneakyLog to harvest credentials. Some campaigns employ legitimate remote management tools to maintain access to compromised devices. The phishing efforts are particularly focused on industries like manufacturing, retail, and healthcare, aiming to capture personal and financial data.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]