"QuickBooks Accounting Software Targeted for Sophisticated Phishing Attacks"

Customers of Intuit's popular QuickBooks accounting program have received phishing emails claiming their accounts have been suspended, according to a notice on the Intuit website. The legitimate-looking emails are designed to trick QuickBooks users into sharing financial information or granting access to their accounts. Since May 2022, malicious actors have been using the QuickBooks domain and website to send fake invoices and request payments. Threat actors are increasingly devising new schemes to target businesses, consumer-accounting users, and taxpayers with increasingly sophisticated attacks throughout the year. They begin by signing up for and creating a free QuickBooks account, and then send emails from this domain, usually spoofing other popular software such as Office 365. In essence, attackers are taking advantage of QuickBooks's long-standing legitimacy and popularity along with other common types of software to trick busy business users. This article continues to discuss the recent targeting of the QuickBooks accounting software in phishing attacks. 

SC Media reports "QuickBooks Accounting Software Targeted for Sophisticated Phishing Attacks"