Over the last week or so I’ve received two batches of slightly different DocuSign phishing attempts. They are typical “click a link in the email that downloads a malicious .doc you have to enable macros in” attacks, though the first time I’ve seen DocuSign as the bluff. Also somewhat interesting that these attacks seem to …
Tag Archives: encoded
letter.hta – Ransomware
This email was a reply to what seemed to be a completely legitimate email from a client. The email contained a password-protected .rar file named after the recipient (May have been passed using first & last name in unsuspecting senders contacts list?). The reply message: Hi, I attach a scanned copy of the letter to …