• Services
    • Assess
      • Compromise Assessment
      • APT Assessment
      • Penetration Testing
      • Secure Architecture Design & Review
      • Red Team Assessment
      • Purple Team Assessment
      • Social Engineering
      • Source Code Review
    • Transform
      • SOC Consultancy
      •     SOC Maturity Assessment
      •     SOC Model Evaluation
      •     SOC Gap Analysis
      •     SIEM Gap Analysis
      •     SIEM Optimization
      •     SOC Content Pack
    • Train
      • Security Awareness and Training
      • Tabletop Exercise
      • Simulated Cyber Attack Exercises
    • Respond
      • Incident Response
      • Incident Analysis
  • Managed Security
    • Managed Security Monitoring
      • Remote SOC
      • Onsite SOC
      • Hybrid SOC
    • Managed Security Services
      • Managed Detection and Response
      • Managed Endpoint Detection and Response
      • Managed Threat Intelligence
      • Managed Threat Hunting
      • Managed Risk-Based SOAR
      • Managed Penetration Testing
  • Solutions
  • Resources
    • Blog
    • Threat Advisory
  • Company
    • About Us
    • Careers
    • Contact
Rewterz Threat Alert – Multiple Phishing Campaigns – Indicators of Compromise
March 19, 2019
Rewterz Threat Advisory – Mozilla Firefox Multiple Vulnerabilities
March 20, 2019

Rewterz Threat Alert – CEO Fraud Themed Phishing Email

March 20, 2019

Severity

Medium

Analysis Summary

CEO themed phishing email is active again and sending phishing emails to the users to get some apple itunes gift cards face value for a client. 

The email body looks like this. 

— Body of Email —

Hello [REDACTED RECIPIANT],


I’ll need you to quickly run to the store to get some Apple iTunes gift cards face value for a client,Let me know if you can purchase them now so I can advice the quantity and the value needed.


P.S: I’m very busy right now and can’t talk but will lookout for your response.


Regards
[Redacted CEO NAME]

— End of Email Body —

Indicators of Compromise

Email Address ceo3300[@]scryptmail[.]com
Email Subject Request
[ New Update ] [ Receipt Invoice ] [ #ID8461164 ]
Thanks for your order in App store at March 14, 2019

Remediation

  • Block threat indicators at your respective controls.
  • Never click on the links/attachments sent by unknown senders.
  • Always be suspicious about the emails sent by unknown senders.
  • Services
    • Assess
      • Compromise Assessment
      • APT Assessment
      • Penetration Testing
      • Secure Architecture Design & Review
      • Red Team Assessment
      • Purple Team Assessment
      • Social Engineering
      • Source Code Review
    • Respond
      • Incident Response
      • Incident Analysis
  • Transform
    • SOC Consultancy
    •     SOC Maturity Assessment
    •     SOC Model Evaluation
    •     SOC Gap Analysis
    •     SIEM Gap Analysis
    •     SIEM Optimization
    •     SOC Content Pack
  • Train
    • Security Awareness and Training
    • Tabletop Exercise
    • Simulated Cyber Attack Exercises
  • Managed Security
    • Managed Security Monitoring
      • Remote SOC
      • Onsite SOC
      • Hybrid SOC
    • Managed Security Services
      • Managed Detection and Response
      • Managed Endpoint Detection and Response
      • Managed Threat Intelligence
      • Managed Threat Hunting
      • Managed Risk-Based SOAR
      • Managed Penetration Testing
  • Solutions
  • Resources
    • Blog
    • Threat Advisory
  • Company
    • About Us
    • Careers
    • Contact
COPYRIGHT © REWTERZ. ALL RIGHTS RESERVED.