I’ve written about this before, but I think it bears repeating now and then. Security awareness of an organization’s employees is as important as ever and is often the weakest link in an organization’s information security posture.
The spammers are quite sophisticated, and the most recent target has been small and medium size businesses. A recent attack targeted SMBs, particularly the finance departments, who may be handling banking for the origanizations. Note the FDIC insurers individuals’ accounts, not SMBs’ accounts.
The spam looked like it was coming from the Federal Reserve about a failed wire transfer. Once the user clicked on the email a Trojan would be deposited in the user’s system to capture and send home login information. Here’s an article about it.
The attackers recently changed their email to appear to be now coming from the IRS.
So, as I’ve said before, do not open or click on anything from anything that looks suspicious. Usually a good spam filter will catch these things, but if in doubt, be safe and don’t click on it.
Nancy Sykora
Sr. Account Executive