2 min read

Threat Actors Target South Korean and Aussie Users with Malicious Emails Disguised as Accounting Ledgers

Alina BÎZGĂ

May 17, 2021

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Threat Actors Target South Korean and Aussie Users with Malicious Emails Disguised as Accounting Ledgers

Threat actors are again targeting taxpayers as they prepare their returns in a new phishing campaign that seeks to infect recipients” machines with Remote Access Trojans.

Bitdefender Antispam Lab spotted the most recent malspam campaign targeting tens of thousands of users at the beginning of May.

98.34 percent of the attacks appear to have originated from IP addresses in Bangladesh, with 76.08% of targeted users in South Korea, 17% in Australia and 1% in the US.

The focus on South Korean users is not by chance, as the May 31 deadline for filing individual income tax returns draws near. The cybercriminals put little effort into creating very legitimate-seeming correspondence. They cut to the chase without creating a sense of urgency or alarming recipients.

The subject line reads “Account Ledger for 2020-2021,” and the email body encourages recipients to verify the attachment.

The attachment contains a malicious software that, once accessed, lets the attackers gain administrative control over the target machine, including monitoring user behavior, accessing confidential or sensitive information, and taking screenshots.

On top of these distinctive characteristics, the malicious software may be used as a gateway to initiate downloads for other malware tools such as ransomware.

This whole package makes a RAT particularly dangerous for users. If paired with a keylogger, the attackers can gain financial and personally identifiable information that can be used for fraud and identity theft.  Moreover, after exfiltrating user data, the threat actors may encrypt machines, forcing targets to pay for a decryption key.

Since the beginning of the year, threat actors have been making the most social, political and economic agendas, tailoring their attacks to suit any scenario imaginable. They play a never-ending game of cat and mouse with their targets. While many users have become savvy at spotting phishing emails, the simplicity and most likely familiarity of such correspondence may prove highly profitable for cybercriminals

tags


Author



Right now

Top posts

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

January 26, 2023

2 min read
Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

January 19, 2023

4 min read
Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

More than 50,000 People Affected by US Cellular Data Breach; Leaked Info Hits the Internet More than 50,000 People Affected by US Cellular Data Breach; Leaked Info Hits the Internet
Silviu STAHIE

February 08, 2023

2 min read
Russian Threat Actor Targets Ukraine Ministry and Polish Police in Similar Campaigns Russian Threat Actor Targets Ukraine Ministry and Polish Police in Similar Campaigns
Silviu STAHIE

February 06, 2023

1 min read
U.S. Department of Health and Human Services Hits ‘Banner Health’ with $1.25 Million Fine U.S. Department of Health and Human Services Hits ‘Banner Health’ with $1.25 Million Fine
Silviu STAHIE

February 03, 2023

1 min read