By Luis Chapetti – Security Researcher
The general consensus is that spam volume continues to drop, but spear phishing (targeted cyber attacks on your company) is at an all-time high. At Barracuda Labs we can confirm these claims daily. Targeting small and medium businesses, the latest attacks pose as the Federal Trade Commission – a common and successful scare tactic aimed at tricking even the most diligent of users. The email, which is verbose and not grammatically perfect, warns the targeted organization of a complaint and provides a letter for review. The letter, linked to a hacked domain, is actually a zip containing a .pif file (Program Information File) loaded with malicious code similar to that seen in Zeus/SpyEye Trojan horse malware which is designed to steal employee login credentials.