Beware, that Social Security email could be hiding dangerous malware

Posted by:
Emma Walker
Thu, 09 Jan
0 Comment
Feature image

Cybercriminals are utilizing a phishing campaign to impersonate the US Social Security Administration, aiming to spread the ConnectWise Remote Access Trojan (RAT) malware. Security researchers at Cofense detected this malicious scheme intensifying as the 2024 US presidential elections approached. The attackers manipulated emails to appear as updated benefits statements from the Social Security Administration, luring recipients with fake links or obscured buttons. The aggressive campaign gained momentum from mid-September to mid-November, peaking after Election Day. This strategy leverages the legitimate ConnectWise Control software to surreptitiously compromise victims’ devices and seize control remotely, enabling data theft and deployment of additional malware. The scenario underscores the misuse of legitimate software by threat actors who exploit its functionalities discreetly in cybercriminal endeavors.

Tags:

0 0 votes
Article Rating
Subscribe
Notify of
guest

0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments