Rewterz Threat Alert – Evilnum APT Group Targeting Financial Sector
December 23, 2020Rewterz Threat Advisory – Multiple NETGEAR Routers and WiFi Systems information disclosure
December 24, 2020Rewterz Threat Alert – Evilnum APT Group Targeting Financial Sector
December 23, 2020Rewterz Threat Advisory – Multiple NETGEAR Routers and WiFi Systems information disclosure
December 24, 2020Severity
Medium
Analysis Summary
A classic phishing email reportedly targeted to just 1 branch office of a larger organization. It has been seen recently that the threat actors are targeting the executives to maintain the secrecy and the chances are much higher that the executive would look after the email to get the insight of the information that threat actor have posted in the email. The email has a subject of overdue balance of an organization asking for the confirmation details of the transaction. After opening the link, it takes the user to the fake credential page to ask the user to enter his/her credentials.
Impact
- Credential theft
- Exposure of sensitive data
Indicators of Compromise
Filename
- Overdue Balance
Remediation
- Block all threat indicators at your respective controls.
- Always be suspicious about emails sent by unknown senders.
- Never click on the links/attachments sent by unknown senders.