Symantec shares that an active spam campaign is underway that appears to be terrorism alert messages. Users should avoid this new malicious and targeted attack underway.
Cybercriminals spoof law enforcement officials in Dubai, Bahrain, Turkey, and Canada to send terror-alert spear-phishing emails containing Backdoor.Sockrat.
Earlier this month, Symantec observed malicious emails spoofing the email address of one United Arab Emirates (UAE) law enforcement agency, particularly the Dubai Police Force. These spear-phishing emails, which read like a warning from the Dubai Police, bank on users’ fear of terror attacks to trick them into executing the malicious attachments. The attachments are disguised as valuable security tips that could help recipients to protect themselves, as well as their companies and their families, from potential terror attacks that may occur in their business location.
To add more credibility to the emails, the crooks impersonate the incumbent Dubai Police lieutenant general, who is also the head of general security for the emirate of Dubai, by signing the email with his name. Symantec advises users to remain vigilant and be wary of social engineering techniques to protect their data. Users are advised to adhere to the following best practices to avoid getting infected:
* Do not open attachments or click on links in suspicious email messages
* Avoid providing any personal information when answering an email
* Never enter personal information in a pop-up page or screen
* Keep security software up to date
* If uncertain about an email’s legitimacy, contact your internal IT department or submit the email to Symantec Security Response through this portal