- Jan 24, 2011
- 9,378
A new advanced phishing scheme going after a specific type of target has beendiscovered by security firm FireEye, which detailed the cyber attack in a new report. Specifically, a highly educated group going by the name of FIN4 has been discovered to target certain Wall Street companies, looking to obtain sensitive information about certain companies, transactions, and special deals, in order to later make use of it for financial gain.
The hackers employed the kind of phishing schemes that many Internet users have encountered so far, looking to convince unsuspecting users to click on malicious links that could then allow the hackers to steal sensitive login credentials and gain access to internal documents.
But unlike other phishing emails, that are sometimes easy to spot by recipients, the FIN4 emails were more complex, showing that the hackers have “strong command of the English language and knowledge of corporate finance and Fortune 500 culture,” as Ars Technica puts it.
After targeting a specific person in a company, and stealing his or her Microsoft Outlook account login details with help of malicious dialog boxes tricking the user to sign in back to his or her account (image above), the hackers would then send other phishing emails to other company insiders, injecting in some of these emails malicious code in Microsoft Office documents.
Thus, FIN4 members managed to infect the accounts of C-level executives, legal counsel, scientists and other employees of more than 100 companies, including 80 publicly traded companies and 20 Wall Street companies involved in mergers and acquisitions.
It is believed that FIN4 used the intelligence obtained from these spying attacks for financial benefits, though it’s not clear exactly what FIN4 did with the information it stole.
Read more: http://bgr.com/2014/12/02/fin4-wall-street-phishing-scheme/?linkId=10975679
