“Dit abonnement er suspenderet”
This email is impersonating Disney+. It falsely claims impending subscription suspension due to billing errors and urges the recipient to give personal and credit card details to fix this.
Analyst: Sampo Lenkola
This email impersonates a senior executive. It claims that they want to change their bank account information to trick HR into redirecting the next paycheck to the wrong bank account.
It is noteworthy that the sender field has been altered to make the recipient believe that the email is actually from their executive.
Analyst: Siiri L.
“ATTENTION EMPLOYEES: 2024 Acceptance Of Gratuity Policy”
In this phishing email, the attacker impersonates the HR department of the recipient's company. The message looks very genuine and the language use is realistic, but the actual content is very suspicious.
The link leads to a credential harvesting website, which reveals this to be a malicious email.
Analyst: Wivi Koenkytö
A fake invoice is due
“Payment statement from...”
Hox rating: ★★✩✩
Threat type: Advanced
Payload: Malicious phone number
This email claims that the recipient has a due invoice, and a "customer support" number is repeated multiple times. The goal is to get the recipient, unaware of a subscription, to call the malicious number.
The malicious actors have tried to make the email seem more legitimate by utilizing Wave Apps. The 'View invoice' button leads to the legitimate WaveApps domain, where the invoice is again trying to urge the recipient to call the malicious number.
Analyst: Siiri L.
Keep up with the threat feed
Don’t miss the next threat feed, and subscribe to our newsletter for the latest feed and cybersecurity content. Stay informed and stay safe!