There are reports of hackers exploiting Microsoft Exchange servers, that have not been patched, to distribute spam email infected with IcedID malware. If you do run IcedID on your PC, the malware compromises the security of your machine opening a backdoor for other malware to be injected into your computer. That other malware could be ransomware!
IcedID combined with thread hijacking and unpatched Exchange • The Register
A typical infected package in a phishing email can consist of an encrypted zip file with the password in the email. As you can guess, if you use the password to decrypt the zip, an installer for IcedID will start in the background.
Do you want help with your understanding of such attacks and how you and your team can cope and defend against them? Then we have the training course for you:
