"Attackers Are Sending Fake Scanner Notifications With Malicious Attachments"

Attackers are now targeting scanner notifications. According to Jeremy Fuchs, a researcher at the cloud email and collaboration security firm Avanan, attackers are spoofing scanner notifications to send malicious files. They send spoof scanner notification emails to users, informing them of a received scanned message. Some scanners generate an email notification that allows users to download a scanned file. While scanning is much less common in the work-from-home era, it is not unheard of, and as a result, people who receive such messages may believe they are legitimate. In one case, the subject line "Commission Receipt" was used to entice recipients to open the email and attachment. End-users will see something of high value, such as their next paycheck, tricking them into clicking without reconsidering whether it is legitimate. Even if users do not expect to receive an email from a scanner, they will often click on the file based on the enticing subject line. The attached file is not what it appears to be, but rather an .htm file containing a malicious Trojan virus attempting to take control of the user's computer. This article continues to discuss attackers distributing malicious attachments via fake scanner notifications.

SiliconANGLE reports "Attackers Are Sending Fake Scanner Notifications With Malicious Attachments"