Lucene search
+L

Attackers Claim Identity of Financial NGO to Steal Sharepoint, Office Credentials

🗓️ 06 May 2020 13:05:16Reported by Elizabeth MontalbanoType 
threatpost
 threatpost
🔗 threatpost.com👁 66 Views

Attackers target investment brokers through phishing emails claiming to be from FINRA to steal Microsoft SharePoint and Office credentials. Campaign uses actual officer names and a fake domain 'broker-finra.org' to add credibility, prompting recipients to enter their passwords. In some cases, emails do not include attachment, possibly setting stage for follow-up with infected content. Recipients are urged to change their passwords and delete emails from 'broker-finra.org,' also verify suspicious emails. Not directly related to COVID-19, but similar tactics have been used in recent email campaigns masquerading as health organizations

Refs

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation