author photo
By SecureWorld News Team
Tue | Jan 10, 2017 | 10:28 AM PST

This scam sends you a fake PDF that asks you to login and unlock it, then steals your credentials.

Tripwire explains:

Attackers are using fake encrypted PDF documents to try to phish for unsuspecting users’ login credentials.

John Bambenek, a handler at SANS Internet Storm Center, disclosed the phishing campaign on 4 January. He found that the offending fraudsters are targeting users who lack a high level of security awareness.

As he told Threatpost:

“This is an untargeted phishing campaign. They are not going after the most sophisticated users. They are going after Joe Cubicle that may not think twice about entering credentials to unlock a PDF.”

Comments