"Sustained 'Red Deer' Phishing Attacks Impersonate Israel Post, Drop RATs"

A sustained phishing campaign impersonating Israel's postal service has targeted Israeli engineering and telecommunications companies. According to research conducted by Perception Point, the phishing emails typically appear to be delivery notices containing HTML links. When clicked, an HTML file attachment is downloaded and opened in the user's browser. This HTML file then opens an ISO image containing a Visual Basic script that downloads a modified version of the AsyncRAT malware. Named "Operation Red Deer" because the logo for the Israel Postal Company, also known as Israel Post, is a red deer, this technique was first spotted being used in a campaign in April 2022. However, a similar campaign with the same malware version and SSL certificate was discovered last month. This article continues to discuss the Red Deer phishing attacks. 

Dark Reading reports "Sustained 'Red Deer' Phishing Attacks Impersonate Israel Post, Drop RATs"