There is an active email phishing campaign infecting both home users and organisations. The malicious emails contain a .zip attachment. The payload is called IceXLoader and it primarily exfiltrates sensitive information from infected systems:
- IP address
- Machine name
- Windows OS version
- UUID
- Username
- Installed security software
- .NET Framework versions 2.0 and/or 4.0
- Hardware
Phishing drops IceXLoader malware on thousands of home, corporate devices (bleepingcomputer.com)
The threat actors are not securing the stolen data as it is available to anyone who accesses the online database that the malware uploads to.
Do you have a staff training program to make your people aware of these types of attacks that may slip past your technical defences? If not have a look at our online training site CyberAwake:
Please Note:
I am on leave so the news this week is “in brief”. You can still contact me via the contact page and Octagon Technology.
