Targeted Phishing Campaign by Malicious Actors
Blog: NASSCOM Official Blog
It has been reported that malicious actors are planning a large-scale phishing attack against Indian organizations targeting (small, medium & large enterprises). In the radar we have, Lazarus Group from North Korea, as their activities have given an indication upon a mass global phishing campaign.
The hacking campaign involves using multiple phishing emails targeting local authorities in charge of dispensing government-funded COVID-19 support initiatives. These phishing emails are highly targeted as they appear to be legitimate but are not, and drive users to fake websites/installing malicious software in their system; thus, compromising their personal and financial information.
The Indian government has announced INR 20 lakh crore (US$307B) of credit, finance and collateral-free loans to micro, small and medium enterprises, as well as welfare packages for citizens. The group is trying to impersonate government agencies, departments and trade associations who are tasked to oversee the disbursement of the fiscal aid to keep a track of the distribution and policies via firstname.lastname@example.org, as email is been sent using this address to launch phishing activities. DSCI TI&R team is continuously monitoring events, domains and other suspicious activities with regards.
As per one of the research firms, attackers have scheduled phishing campaigns targeting India on June 21, 2020.
The post Targeted Phishing Campaign by Malicious Actors appeared first on NASSCOM Community |The Official Community of Indian IT Industry.