Rewterz Threat Alert – Emotet -Fresh IOCs
January 21, 2021Rewterz Threat Advisory – ICS: Delta Electronics TPEditor
January 22, 2021Rewterz Threat Alert – Emotet -Fresh IOCs
January 21, 2021Rewterz Threat Advisory – ICS: Delta Electronics TPEditor
January 22, 2021Severity
Medium
Analysis Summary
Classic Phish Password Expiration is common way to get people to click through, it is recommended to always check the sender. This one goes to an Office 365 Form, trying to lure the user to click on the malicious link in attempt to steal credentials from the user and can later be used by the threat actors for their gains.
Impact
- Credential theft
- Exposure of sensitive data
Indicators of Compromise
Email Subject
Wednesday, January 20, 2021
From Email
casey[.]matthews@matthews[.]com
Remediation
- Block all threat indicators at your respective controls.
- Always be suspicious about emails sent by unknown senders.
- Never click on links/attachments sent by unknown senders.