Telemetry data collected by Microsoft Malware Protection Center (MMPC) indicates this campaign primarily targeted German-language speakers and banking websites. The spam emails are difficult for email servers to filter because the spamming component uses compromised email accounts to send malicious links. This means traditional anti-spam techniques, such as callback verification, won’t be applicable because the email is sent from a vetted or legitimate email address.
About The Author
Organizations worldwide lack the complete visibility into activities across IT infrastructures needed to reduce cyber risks, causing security incidents, failed compliance, and disruption of business…