A phishing marketing campaign is concentrating on customers in Mexico with tax-themed lures, in accordance with researchers at Cisco Talos.
The phishing emails direct customers to a web site that makes an attempt to trick them into downloading a brand new pressure of information-stealing malware known as “TimbreStealer.”
“The phishing marketing campaign makes use of geofencing strategies to solely goal customers in Mexico, and any try to contact the payload websites from different areas will return a clean PDF file as a substitute of the malicious file,” the researchers write.
“The present spam run was noticed to primarily use Mexico’s digital tax receipt customary known as CDFI (which stands for ‘Comprobante Fiscal Digital por Web,’ or on-line fiscal digital bill in English). Talos has additionally noticed emails utilizing generic bill themes used for a similar marketing campaign.”
The menace actor behind this operation was answerable for one other marketing campaign utilizing the Mispadu Trojan earlier in 2023.
“Talos has noticed new distribution campaigns being performed by this menace actor since not less than September 2023, once they had been initially distributing a variant of the Mispadu banking trojan utilizing geofenced WebDAV servers earlier than altering the payload to this new information-stealer,” the researchers write. “After the menace actor modified to this new stealer, we haven’t discovered any proof of Mispadu getting used anymore.”
The TimbreStealer malware is refined and seems to be custom-made. As soon as put in, the malware makes an attempt to steal credentials from the sufferer’s machine.
“TimbreStealer reveals a complicated array of strategies to bypass detection, have interaction in stealthy execution, and guarantee its persistence inside compromised programs,” the researchers write. “This consists of leveraging direct system calls to bypass typical API monitoring, using the Heaven’s Gate method to execute 64-bit code inside a 32-bit course of, and using {custom} loaders. These options point out a excessive stage of sophistication, suggesting that the authors are expert and have developed these parts in-house.”
KnowBe4 empowers your workforce to make smarter safety selections every single day. Over 65,000 organizations worldwide belief the KnowBe4 platform to strengthen their safety tradition and cut back human danger.
Cisco Talos has the story.
Redmi 13C 5G (Startrail Green, 4GB RAM, 128GB Storage) | MediaTek Dimensity 6100+ 5G | 90Hz Display
₹10,999.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Fire-Boltt Phoenix Pro 1.39" Bluetooth Calling Smartwatch, AI Voice Assistant, Metal Body with 120+ Sports Modes, SpO2, Heart Rate Monitoring (Black)
₹1,299.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Mivi DuoPods i2 True Wireless Earbuds, 45+ Hrs Playtime, HD Call Clarity, Fast Charging, Type C, 13mm Bass Drivers, IPX 4.0 Sweat Proof, BT v5.3, Made in India Earbuds - Black
₹999.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Noise Twist Go Round dial Smartwatch with BT Calling, 1.39" Display, Metal Build, 100+ Watch Faces, IP68, Sleep Tracking, 100+ Sports Modes, 24/7 Heart Rate Monitoring (Gold Link)
₹1,499.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Lapster 24pcs Mix Spiral Charger Spiral Charger Cable Protectors for Wires Data Cable Saver Charging Cord Protective Cable Cover
₹99.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
HP 680 Original Ink Advantage Cartridge (Black)
₹852.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
STRIFF Mpad Mouse Mat 230X190X3mm Gaming Mouse Pad, Non-Slip Rubber Base, Waterproof Surface, Premium-Textured, Compatible with Laser and Optical Mice(Universe Black)
₹99.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Duracell USB Type C, 3A Braided Sync & Fast Charging Cable, 3.9 Ft (1.2M),QC 2.0/3.0 Ultra Fast Charging,Compatible with Samsung,One Plus & all C type devices,Seamless Data Transmission,Series 3-Black
₹379.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
TP-Link AC750 Wifi Range Extender | Up to 750Mbps | Dual Band WiFi Extender, Repeater, Wifi Signal Booster, Access Point| Easy Set-Up | Extends Wifi to Smart Home & Alexa Devices (RE200)
₹1,799.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Ambrane Unbreakable 3A Fast Charging 1.5m Braided Type C Cable for Smartphones, Tablets, Laptops & other Type C devices, 480Mbps Data Sync, Quick Charge 3.0 (RCT15A, Black)
₹179.00 (as of February 27, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
SAMSUNG SSD T7 Portable External Solid State Drive 2TB, USB 3.2 Gen 2, Reliable Storage for Gaming, Students, Professionals, MU-PC2T0T/AM, Gray
$149.99 (as of February 26, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
WD 5TB Elements Portable HDD, External Hard Drive, USB 3.0 for PC & Mac, Plug and Play Ready - WDBU6Y0050BBK-WESN
$129.99 (as of February 26, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Corsair RM850e (2023) Fully Modular Low-Noise Power Supply - ATX 3.0 & PCIe 5.0 Compliant - 105°C-Rated Capacitors - 80 Plus Gold Efficiency - Modern Standby Support - Black
$129.99 (as of February 26, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Rioddas External CD/DVD Drive for Laptop USB 3.0 CD/DVD Player Portable +/-RW Burner CD ROM Reader Rewriter Writer Disk Duplicator Compatible with Laptop Desktop PC Windows Apple Mac Pro Macbook Linux
$19.99 (as of February 26, 2024 21:13 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)