Solera research director spots a hybrid spear phishing attack

http://www.flickr.com/photos/asirap/4663404044/

Andrew Brandt, The newly-installed director of threat research with Solera Networks, has been analyzing what appears to be a hybrid spear phishing attack against a colleague and revealed the effort that goes into making these targeted attack emails look genuine.

According to Brandt, the message addressed to Alan Hall, Solera's head of marketing, claimed it was an order confirmation from a (real) online retailer named Yesasia.com, and contained his full name as well as his Solera Networks email address in the body of the message.

The order confirmation claimed that Alan had just completed the purchase of two products: a Logitech QuickCam Ultra Vision webcam and a 1TB external hard drive from Freecom with a price tag of $483.47. “For more information, the email claimed, you could follow a link – now dead – that looked like it pointed to an invoice hosted on Yesasia’s server”, he said in his latest security posting, adding that it turned out to be a classic fake shipping confirmation scam.

Tags: