In Russia, a malicious mailing list was registered on behalf of the popular fashion brand Gucci – users were invited to go to a fake site and download an infected file. This was reported by experts at Fight Against Cybercrime Technologies – FAC.CT. (former Russian division of Group-IB) in Telegram-channel.
“Mail was detected by FAC.CT’s automated email protection system, Business Email Protection. The attackers used a popular spoofing technique to spoof the sender’s address.
During the analysis, the Monitoring and Response Center experts found that on the mailing list buyers are invited to get acquainted with the Gucci 2023-2024 fall-winter collection. However, the link in the email leads to a malicious site where the archive containing the virus is downloaded.
The site uses the recently registered gucci-moscow domain, on the home page of which a download of a catalog of branded clothes is offered.
In May, head of the Center for Security Operations at FAC.CT. yaroslav kargalev He told socialbites.caNew domains such as .zip and .mov are likely to be used by cybercriminals to create credible phishing links over time.
Source: Gazeta
Jackson Ruhl is a tech and sci-fi expert, who writes for “Social Bites”. He brings his readers the latest news and developments from the world of technology and science fiction.