Abnormal Security has identified two groups that are using executive impersonation to execute Business Email Compromise (BEC) attacks on companies worldwide.
The first group, Midnight Hedgehog, engages in payment fraud, while the second group, Mandarin Capybara, executes payroll diversion attacks. Both groups have launched BEC campaigns in at least 13 different languages, including Danish, Dutch, Estonian, French, German, Hungarian, Italian, Norwegian, Polish, Portuguese, Spanish, and Swedish, the researchers noted.
While attacking targets across various regions and using multiple languages is not new, in the past, these attacks were perpetrated mainly by sophisticated organizations with bigger budgets and more advanced resources, Crane Hassold, director of Threat Intelligence at Abnormal Security, wrote in his research.
More Stories
Smashing Security podcast #369: Keeping the lights on after a ransomware attack
Leicester City Council suffers a crippling ransomware attack, and a massive data breach, but is it out of the dark...
US Congress Passes Bill to Ban TikTok
The bill that could see TikTok banned in the US has been approved by the House of Representatives and the...
How to Tell If Your Text Message Is Real
According to reports from the Federal Trade Commission’s Consumer Sentinel database, text message scams swindled $372 million from Americans in...
US Sanctions Iranian “Fronts” for Cyber-Attacks on American Entities
The US Treasury announced sanctions on two companies and four individuals for cyber campaigns conducted on behalf of the Iranian...
Leeds Talent Pool Attracts BlueVoyant’s First UK Security Operations Center
The proximity of organizations’ headquarters, like Asda’s and NHS England’s, prompted BlueVoyant to choose Leeds as the location for its...
City street lights “misbehave” after ransomware attack
The UK's Leicester City Council was thrown into chaos last month when a crippling cyber attack forced it to shut...