Category: Indicators

AICPA.org Phishing: Round 2

This morning I received another, slightly different, AICPA.org phishing email. This time, the spoofed sender was “Aaron Peters – security@intuit.com” (Header available at the bottom of the post). This email contained two hotlinks, both of which pointed to hxxp://foraver.de/wp-includes/aic.html. This post has a slightly more convincing version of the standard wait screen, which consists of […]

Read More →

Threat Intel: AICPA.org Phishing Email

I received an email reportedly from support@aicpa.org this morning. The email was clearly a phishing email as I’m not a CPA and it was addressed to “Dear accounting officer”. A picture of the email is included below: In order to avoid muddying up the post, the email header is included at the bottom of the […]

Read More →

Thanks for Sharing – Indicators

Based on popular request, I’m listing the indicators that I gathered from the malware in the situation described in the previous post (Thanks for Sharing). Don Clifton (@Digitalsec4u) has also shared his (and will be updating more) over on his blog at digitalsecurity4u. The initial tip came from the following tweets by @c_APT_ure: #malware news […]

Read More →