Hox rating: ★✩✩✩
Threat type: Bulk phishing
Region: Global
Analyst: Jon Gellin
Date: 14.04.2023
This phishing message, disguised as an electrical invoice notification, seems to be sent from a utility company, informing the recipient of an outstanding bill. The email contains a call to action, urging the user to click a provided link to view and pay the invoice.
But, upon clicking the link, the user is sent to a malicious website designed to harvest sensitive information, such as login credentials and financial data.
Hox rating: ★★✩✩
Threat type: Advanced campaign
Region: Nordics
Analyst: Suvi Hakala
Date: 14.04.2023
This phishing email, sent in the name of OP Group, a Finnish bank, claims the recipient received a new confidential message and that they can open it through the included link.
It urges the recipient to click the link within 14 days. But this link leads to a malicious webpage, which harvests the recipient’s banking credentials and sensitive personal data.
The email template was copied from a real confidential email notification, and that's why it looks legitimate. Translating the text into three languages means reaching more potential targets.
Don't miss the next threat feed, and subscribe to our newsletter for the latest feed and cybersecurity content. Stay informed and stay safe!
Subscribe to our newsletter for a curated digest of the latest news, articles, and resources on human risk and evolving phishing threats in the ever-changing landscape.
Hoxhunt needs the contact information you provide to us to contact you about our products and services. You may unsubscribe from these communications at anytime. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, check out our Privacy Policy.
