A sophisticated phishing campaign is currently targeting Spanish-speaking users in organizations across Latin America and Europe, aiming to deliver Windows banking trojans such as Casbaneiro, also known as Metamorfo, via the Horabot malware.
The campaign has been attributed to a Brazilian cybercrime threat actor, tracked as Augmented Marauder and Water Saci, which was first documented by Trend Micro.
The attackers are utilizing dynamic PDF lures to trick victims into downloading the malware, highlighting the evolving nature of phishing attacks and the need for robust security measures.
The use of PDF files as lures is particularly concerning, as they can be designed to appear legitimate and evade traditional security controls.
Organizations in Latin America and Europe should be aware of this threat and take necessary precautions to protect themselves from the Casbaneiro phishing campaign, including educating users about the risks of phishing and implementing robust email security controls.
Source: Original Article
