Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner
Summary
A phishing campaign is targeting French-speaking corporate environments by distributing fake resumes. These malicious documents, disguised as VBScript files, are designed to deploy cryptocurrency miners and information stealers once opened.
IFF Assessment
FOE
This campaign's use of social engineering and credential theft to deploy malware represents a direct threat to enterprise security.
Defender Context
Defenders should be vigilant about social engineering tactics like credential theft via fake documents, particularly in multilingual environments. Training users to scrutinize email attachments and be wary of unsolicited or unusually formatted documents is crucial.