"Phishing Scheme Uses Legit Signup Forms to Steal Payment Card Data"

Security researchers have found that cybercriminals are using signup forms for official newsletters from the websites of international companies to hide phishing attacks. According to researchers, these phishing emails can evade spam filters used by servers and clients, as well as deceive the recipients of the emails into opening them through the use of addresses of well-known official companies such as Audi, Austrian Airlines, and more. The purpose of this phishing campaign is to collect credit card information. This article continues to discuss the approach used in this new phishing campaign as well as the use of Google Translate and the tax season as phishing vectors. 

Bleeping Computer reports "Phishing Scheme Uses Legit Signup Forms to Steal Payment Card Data"