1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Ikea email systems bombarded by phishing attacks

    From TechnologyDaily@1337:1/100 to All on Mon Nov 29 14:15:04 2021
    Ikea email systems bombarded by phishing attacks

    Date:
    Mon, 29 Nov 2021 14:03:58 +0000

    Description:
    Attackers reportedly use compromised Microsoft Exchange servers to hijack existing email chains.

    FULL STORY ======================================================================

    Ikea , the multinational conglomerate popular for its ready-to-assemble furniture, and home accessories, is reportedly reeling under an ongoing cyberattack perpetrated through phishing emails sent via compromised
    Microsoft Exchange servers .

    According to BleepingComputer , Ikea is alerting its employees of the
    campaign conducted through the classic reply-all email chain attack .

    "There is an ongoing cyber-attack that is targeting Inter Ikea mailboxes. Other Ikea organizations, suppliers, and business partners are compromised by the same attack and are further spreading malicious emails to persons in
    Inter Ikea," reads the internal email sent to Ikea employees as seen by BleepingComputer . TechRadar needs you!

    We're looking at how our readers use VPNs with streaming sites like Netflix
    so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.

    Click here to start the survey in a new window <<

    The email goes on to explain the modalities of the reply-all email attack saying that the phishing email can come from their co-workers, or from a third-party, in the form of a reply to an already ongoing conversation. Hijacking internal servers

    An investigation last week into the recent SquirrelWaffle malware campaign
    by cybersecurity experts revealed that attackers have begun using compromised internal email servers that were attacked using a chain of both ProxyLogon
    and ProxyShell exploits to add legitimacy to the reply-chain email attack.

    Researchers at TrendMicro discovered that after compromising the unpatched servers, the attackers hijack internal email chains to add malicious links in legitimate messages.

    This makes the attacks difficult to detect, which is something Ikea has also shared with its employees.

    Furthermore, while sharing an example of a fraudulent message, Ikea tells its employees that the malicious emails contain links with seven digits at the end. Once spotted the recipients are asked to report the email to Ikeas IT department immediately.

    Shield yourself online with these best identity theft protection services , and ensure your computers are protected with these best endpoint protection tools



    ======================================================================
    Link to news story: https://www.techradar.com/news/ikea-email-systems-bombarded-by-phishing-attack s/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)