At Securolytics we recently discovered a new wave of social engineering attacks through email. The messages were being sent with a malicious PDF document attached. The email subject was-
IT Scheduled Maintenance
And the body of the email read-
Please kindly Read Important Message Attached
The PDF document contained the following text with a URL:
The URL address is a simple web page with a very common Microsoft OWA design. The page suggested that the user enter their credentials:
The good news- Securolytics customers using our Web Filtering and Security were fully protected from this attack. Our machine learning had already identified this URL as malware and any attempt to visit this was blocked by our platform.
Alex Bozhko | Software Engineer | Securolytics