Double-check demand payment emails from law firms: Convincing fakes surface

A new threat group called Crimson Kingsnake is impersonating real law companies and debt recovery services to intimidate businessess into paying bogus overdue invoices. The cybercrime gang’s business email compromise (BEC) campaign is targeting marks in the US, Europe, Australia, and the Middle East using blind third-party impersonation tactics, via email addresses hosted on domains that closely resemble the firms’ real domains, and sending emails that include the actual address and VAT number of the impersonated companies.

Read full article on The Register

 


Date:

Categorie(s):

Tag(s):