TrickBot Spear-Phishing Campaign Deploys Malware for Remote Access
Health IT Security
Area 1 Security detected a widespread spear-phishing campaign tied to the notorious TrickBot threat actors, which is targeting victims with fake termination emails in an effort to deploy malware payloads and gain remote access for further nefarious activities.
The phishing attacks leverage a range of lures that threaten users with job termination that appears designed to intimidate workforce members into clicking on a malicious URL contained in the emails.
The campaign messages are simply written and disguised as emails sent from a person of authority within the targeted company, meant to elicit fear from employees through either termination letters or customer complaints.
The supposed termination-related documents are...