Check Point has identified a phishing campaign that is associated with the beginning of world football Championship 2018. The cyber fraudsters sending the infected file under the view game schedules and standings. In the attachment phishing emails hidden malware called “DownloaderGuide”, which is known as Downloader potentially unwanted software.
Most often it is used as a installer of applications such as toolbar, adware, or utility for optimization. Researchers at Check Point have discovered that phishing involves sending different executables, all of which were sent by e-mail using the subject: “World_Cup_2018_Schedule_and_ Scoresheet_V1. ## _ CB-DL-Manager”.
The campaign was first discovered on 30 may 2018 and peaked on 5 June, but last week researchers at Check Point have recorded a new surge, which is associated with the beginning of the tournament.
“Events that attract a large number of people, is a great opportunity for hackers to run malicious campaign, explains Maya Horowitz, head of Threat Intelligence from Check Point Software Technologies. Criminals rely on the fact that because of the hype around the world Cup employees to remain vigilant and open suspicious emails and attachments. Therefore, during large events, like the pre-days of sales, the company should remind employees of the precautions to prevent successful cyber attacks”.
In addition, organizations must prevent phishing attacks before malicious emails will be in the mailboxes of employees. First and foremost, you need to use layered security strategy that protects from both known malware and zero-day threats.
Specialists Check Point Software Technologiesожидают new bursts of online fraud and phishing attacks during the world Cup 2018 and remind the basic rules of safety on the Internet:
∙ Promptly update software. Make sure to use the latest version of the PC operating system and mobile devices, and update antivirus and other apps for security. This will help in time to recognize and protect devices from malware, viruses and other online threats.
∙ Beware of fake websites. The cyber fraudsters is not the first time used high-profile events to create fake websites and domains. They cover everything from merchandising to online broadcasts, which, under the guise of official sources to spread malware or gather sensitive information on unsuspecting visitors.
∙ Beware of emails from unknown senders. The cybercriminals most likely will be many more phishing emails during the tournament, offering free tickets to the game or a raffle at the world Cup. It is not necessary to click on links or open attachments from unknown senders.
∙ Beware of free public Wi-Fi hotspots. Many tourists and fans will want to use free Wi-Fi to watch the broadcast or share files. It is important to remember that an insecure Wi-Fi points — easy target for hackers who can intercept personal data like e-mails and passwords, or upload to mobile device malware.