SHTML Phishing Attack with blurred image | allinfosecnews.com

May 8, 2023, 11:15 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Authored By Anuradha

McAfee Labs has recently observed a new wave of phishing attacks. In this wave, the attacker has been abusing server-parsed HTML (SHTML) files. The SHTML files are commonly associated with web servers redirecting users to malicious, credential-stealing websites or display phishing forms locally within the browser to harvest user-sensitive information.

SHTML Campaign in the field:

Figure 1. shows the geological distribution of McAfee clients who detect malicious SHTML files.

Figure 1. McAfee Client Detection of SHTML

Attackers …

abusing attack attacks blurred browser credential display files forms html information labs locally malicious mcafee phishing phishing attack phishing attacks sensitive information server servers stealing web websites

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Ransomware LockBit: anomalie dopo lo smantellamento 48 minutes ago | malware.news

article cert email link +4

Adopt New Technology that Delivers Value to Your Large Enterprise 53 minutes ago | malware.news

adoption agile business changing +19

16 arrests as Vietnamese network smuggling migrants across the English Channel busted 53 minutes ago | malware.news

arrests busted channel criminal +16

ShadowRay Campaign Exploits Critical Ray Framework Vulnerabilities to Compromise AI Workloads Globally 58 minutes ago | malware.news

anyscale breach campaign compromise +12

Infections with abandoned PlugX USB worm continue to be prevalent an hour ago | malware.news

addresses ars technica compromised continue +12

Novel Kaolin RAT malware distributed in Lazarus Group attacks an hour ago | malware.news

asia attacks distributed fraudulent +15

Microsoft credentials targeted by phishing campaign using Autodesk Drive an hour ago | malware.news

account accounts autodesk campaign +15

Android device hijacking facilitated by new Brokewell banking trojan an hour ago | malware.news

android android device android devices attacks +13

Phishing attack compromises LA County Health Services data an hour ago | malware.news

attack bleepingcomputer compromised data +16

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Security Compliance Architect - Experian Health (Can be REMOTE from anywhere in the US)

@ Experian | ., ., United States

View on infosec-jobs.com

IT Security Specialist

@ Ørsted | Kuala Lumpur, MY

View on infosec-jobs.com

Senior, Cyber Security Analyst

@ Peloton | New York City

View on infosec-jobs.com

Cyber Security Engineer | Perimeter | Firewall

@ Garmin Cluj | Cluj-Napoca, Cluj County, Romania

View on infosec-jobs.com

Pentester / Ethical Hacker Web/API - Vast/Freelance

@ Resillion | Brussels, Belgium

View on infosec-jobs.com