Phishing emails have risen once again trying to trick you into opening the malware and getting hacked.
Hackers and black hat cyber experts are on the attack once again, now targeting everybody. They are impersonating real institutions, mostly bank institutions such as Bank of America and TD Commercial as they are trying to deliver seriously bad malware onto your machine. These kinds of phishing emails usually contain one document, and what tricks people into opening these documents is that these emails look astonishingly real. Usually, the documents contain a set of instructions, so you are the one that gets their malware to do all the bad things.
These cybercriminals have stepped their game to the whole new level as they are now using real bank domains, electronic signatures, logos, statements and anything similar besides that to trick the user into opening the malware document.
As Barracuda Networks explain in their blog post – these threats appear to be so real, that the people need to be informed about these bad acts. The banks are not actually hacked or scammed; it is just that cybercriminals are using their names and logos to persuade and trick you into thinking that the email is from the bank and that the actual bank has contacted you. You are the one that decides how to act on these kinds of messages, and you are the one determining is it real or not.
Why did the criminals actually decide to do this scam via bank institutions? Well, the targets are of high value, criminals can earn a lot of money because the clients usually trust their bank emails without much of doubt is it actually real or not. As everything is connected via World Wide Web (internet), you can do a lot of damage to your machine and your bank account, because anything could be coded in that malware.
Cyber experts say that these scams have occurred multiple times in this month, just with the variation on the topic. Sometimes there is a word document in the email as an attachment, which is actually a malicious script coded to rewrite some files in your Windows directory. Depending on that script, how well is it written and how well is it hidden in that specific Word document, some anti-virus software can detect it and warn you at the right moment. But usually there are a lot of ways to bypass the antivirus software and once you click – it is done.
Sometimes, after you open the document, hackers can remotely access your computer without you knowing, do anything with your files, upload them on the internet, find some of your secret data and delete or use it, steal the information, etc.
As Barracuda Networks note, the new phishing tactic has come after a massive data breach earlier this month, which had a huge impact on around 143 million Americans, and once it is on your machine – hackers can use your machine to spread the malware even more, that is why this scam has such a large impact on population. The best solution is that people get informed and get aware of the possible scams, as well as getting some anti-phishing protection.