Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Wednesday, 1 February, 2023
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Spam In 2019 Q2:

Fraudsters Spread Fake Tax-Refund Packed With Malware.

by The Gurus
November 11, 2019
in Malware, Phishing and Ransomware
Kapersky
Share on FacebookShare on Twitter

During the second quarter of 2019 Kaspersky experts detected multiple mailshots pretending to be offers for tax refunds worldwide. This period traditionally used as a deadline for filing tax returns and refunds in many countries. Using the scheme criminals, were trying to steal valuable information, or in some cases, install dangerous spyware. This and other findings are revealed in the Spam and Phishing in Q2 2019 Report.

Spam and phishing malicious letters usually contain links that lead users to a seemingly legitimate web-page, created by fraudsters and aimed at stealing various types of personal information. These mailshots often exploit seasonal activities to strike victims harder than usual fraudulent tricks, as there is less awareness around them compared to permanent threats. What’s more, in the case of temporary disguises, scammers can use one of the most effective social engineering techniques – giving a limited amount of time to act, justifying it with the real-life circumstances, and therefore tilting the victim towards making spontaneous decisions.

The detected wave of tax refund fraud came under the guise of tax refund letters with short expiration dates. For instance, malefactors used fake major UK tax services to urge victims to follow the link and fill out the form immediately, while emails under the guise of the CRA (Canada Revenue Agency) were giving the recipient just 24 hours to respond, otherwise a tax refund would not be possible.

Moreover, some of the emails analysed by Kaspersky experts included malicious attachments, disguised as a copy of the return form which in fact was either a malicious downloader, which would download more malicious programs onto users’ machines when launched, or a backdoor (multifunctional malware) that provided criminals with remote access to the infected machine. Its capabilities include monitoring keystrokes, stealing passwords for browsers and Windows accounts and recording video from the computer’s webcam. To convince users to launch such malicious file, fraudsters usually would make it look like a zip. file containing important information for tax form updates.

“Seasonal spam and phishing can be extremely effective, since the emergence of such letter in a mailbox is sometimes wished and expected, unlike most “unique offer” – type scams. Moreover, with phishing attacks, the tricked victim might not even realise that it was subjected to a cyberattack and had exposed their credentials or email until it is too late and they suffer from the consequences. The good news is that there are security solutions that not only block malware from being launched and notify the user about the threat, but also have spam and phishing filters that prevent such emails from appearing in an inbox,” said Maria Vergelis, Security Researcher at Kaspersky.
To avoid exposing your personal information and being affected by malicious attachments, users are advised to:

Always check the link address and sender’s email before clicking on anything sent to them
Check if the link address can be seen in the email and is the same as the actual hyperlink (the real address the link will take you to). This can be checked by hovering your mouse over the link
Do not download and open email attachments that come from unfamiliar email addresses, before scanning them with a security solution. If the email seems legitimate, it is best to check it by accessing the website of the organisation that supposedly sent it Never share your sensitive data, such as logins and passwords, bank card data etc., with a third party. Official companies will never ask for data like this via email
Use a reliable security solution with behavior-based anti-phishing technologies, such as Kaspersky Total Security, to detect and block both spam and phishing attacks and initiation of malicious files.

Other key findings in the report include:

The overall number of phishing attacks in the quarter rose by 21% compared to the figure a year ago, reaching 129,933,555
In the second quarter of 2019, the amount of spam peaked in May (58%). The average share of spam in the world’s email traffic was 55%, which is 5% higher than the average figure in the second quarter of 2018
China (23.72%) became the most popular source of spam, overtaking the U.S. (13.89%) and Russia (4.83%)
The country most targeted by malicious mailshots was Germany, once again with 10.05%. Russia came second (6.16%), followed by Vietnam (5.98%)

FacebookTweetLinkedIn
ShareTweetShare
Previous Post

MobileIron Named In The Second Gartner Magic Quadrant For Unified Endpoint Management Tools.

Next Post

When It’s Too Late:

Recent News

JD Sports admits data breach

JD Sports admits data breach

January 31, 2023
Acronis seals cyber protection partnership with Fulham FC

Acronis seals cyber protection partnership with Fulham FC

January 30, 2023
Data Privacy Day: Securing your data with a password manager

Data Privacy Day: Securing your data with a password manager

January 27, 2023
#MIWIC2022: Carole Embling, Metro Bank

#MIWIC2022: Carole Embling, Metro Bank

January 26, 2023

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

Privacy settings

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Powered by Cookie Information