Beware of 'Work Email Disguise' Malware: "Verify Email Sender"
Impersonating Companies with Fake Purchase Orders, Quotations, Invoices, and Resumes
[Asia Economy Reporter Jin-gyu Lee] AhnLab announced on the 20th that it is urging users to be cautious as cases of malware distribution disguised as work-related emails have been continuously discovered recently.
The attackers impersonated real companies and institutions and randomly sent malicious emails disguised as purchase orders, quotation requests, invoices, resumes, and more. The email body contained specific details to induce victims to download and execute the malicious files attached to the email without suspicion.
Cases of malware distribution disguised as invoices were also found. The attackers impersonated the post office and sent emails titled "Delivery Information." The email stated, "There is a package with an incorrect address at the office. Please check the attached file and visit the local office," and attached a malicious file named "Delivery Information Document."
In January, malicious emails disguised as resumes were also discovered. To avoid suspicion, the attackers attached a malicious file named "Resume (date) If you print this out, I will work hard. Thank you in advance." Additionally, the icon image of the malicious file was designed to look like a PDF document icon, leading users to mistake it for a PDF file and execute the malware.
V3 detects this malware and blocks the C&C server addresses that the malware connects to. AhnLab advised following security guidelines to reduce damage caused by such malware, including ▲ verifying the sender of emails from unknown sources ▲ applying the latest security patches to operating systems (OS) and internet browsers ▲ maintaining the latest version of antivirus software.
Hot Picks Today
As Samsung Falters, Chinese DRAM Surges: CXMT Returns to Profit in Just One Year
- "Most Americans Didn't Want This"... Americans Lose 60 Trillion Won to Soaring Fuel Costs
- Tragedy Strikes on Part-time Job Commute... Man in His 30s Arrested for Drunk Driving Death of Freshman College Student
- "Striking Will Lead to Regret": Hyundai-Kia Employees Speak Out... Uneasy Stares Toward Samsung Union
- "Why Make Things Like This?" Foreign Media Highlights Bizarre Phenomenon Spreading in Korea
Yang Ha-young, head of AhnLab’s analysis team, said, "In the future, attackers will continue to attempt malware distribution using various topics that corporate users may be interested in," adding, "It is necessary to develop habits of verifying email senders, refraining from executing attachments, and installing software (SW) updates as basic security practices."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
