Skip to main content

Solera research director spots a hybrid spear phishing attack

posted onOctober 28, 2011
by l33tdawg

Andrew Brandt, The newly-installed director of threat research with Solera Networks, has been analyzing what appears to be a hybrid spear phishing attack against a colleague and revealed the effort that goes into making these targeted attack emails look genuine.

According to Brandt, the message addressed to Alan Hall, Solera's head of marketing, claimed it was an order confirmation from a (real) online retailer named Yesasia.com, and contained his full name as well as his Solera Networks email address in the body of the message.

The order confirmation claimed that Alan had just completed the purchase of two products: a Logitech QuickCam Ultra Vision webcam and a 1TB external hard drive from Freecom with a price tag of $483.47. “For more information, the email claimed, you could follow a link – now dead – that looked like it pointed to an invoice hosted on Yesasia’s server”, he said in his latest security posting, adding that it turned out to be a classic fake shipping confirmation scam.

Source

Tags

Security

Recent News

Tuesday, November 14th

Sunday, November 12th

Friday, November 10th

Wednesday, November 8th

Monday, November 6th