/>
X
Innovation

Stratfor subscribers targeted by passwords-stealing malicious emails

Cybercriminals are quick to capitalize on the Stratfor database leak, and are currently spamvertising malicious emails impersonating the company.
Written by Dancho Danchev, Contributor on

Cybercriminals are quick to capitalize on the Stratfor database leak, and are currently spamvertising malicious emails impersonating the company.

Researchers from Barracuda Labs have intercepted a malicious email campaign impersonating the company. Using  “Stratfor: Beware of false communications” subjects, the emails contain a PDF file enticing end and corporate users into downloading an antivirus package (supposedly McAfee).

Detected as PWS-Zbot.gen.ry, the bogus antivirus package will harvest stored passwords from the infected hosts and send them back to the command and control server. Moreover, the malware will scan the local hard drive for .PDF, .XLS and .DOC files, and will upload them to a remote site, relying on the File Transfer Protocol (FTP).

Users are advised to avoid interacting with the emails, and immediately report them as spam/malicious.

Editorial standards

Related

The 19 best Cyber Monday deals under $30
Amazon Fire TV Stick 4K

The 19 best Cyber Monday deals under $30

Live blog: 100+ of the best Cyber Monday deals
Large white Cyber Monday text with electronics behind it

Live blog: 100+ of the best Cyber Monday deals

The 51 best Cyber Monday deals on Amazon right now
Image of Amazon Echo Show 8 on a wooden table in front of a person cooking and folding pastry dough.

The 51 best Cyber Monday deals on Amazon right now