Malicious HP scan notifications target employees
Posted on 09.04.2013
Users are once again being targeted with fake notifications about a scanned document, but instead of attaching a malicious file to the email, malware peddlers have opted for including a link to a site serving malware:


The email's headers have been spoofed to make it look like the message was sent by a printer inside the victim's enterprise, and the fact that the crooks chose the HP brand is accidental - they could have just as easily have used - and have in the past - Xerox, Lexmark or any other popular brand of printers, scanners, or photocopiers.

This type of malicious spam is constantly being recycled by cyber crooks, and I can easily see why: if you are at work, and busy doing your job, there is a high possibility that you will open the email and click on the link / download the attachment without thinking twice about it because your attention is focused on other things.

"If you work in a business environment, you might well be used to receiving dull-looking emails from printers and scanners in your workplace containing attachments of the scan that the device has just completed," points out Graham Cluley, and malicious emails such as this one simply blend in.









Spotlight

The role of the cloud in the modern security architecture

Posted on 31 July 2014.  |  Stephen Pao, General Manager, Security Business at Barracuda Networks, offers advice to CISOs concerned about moving the secure storage of their documents into the cloud and discusses how the cloud shaping the modern security architecture.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Aug 1st
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //