Spammers are turning to an old technique known as hailstorm to slip past anti-spam and anti-malware filters. Researchers say that hailstorm spam, first spotted in 2008, has been improved and is once again being used, only this time to spread Dridex banking malware and Locky ransomware.
“Hailstorm attacks have become much more prevalent in 2016,” said Jaeson Schultz, technical leader with Cisco Talos. According to Schultz, hailstorm campaigns have evolved over time as well, moving from just hawking affiliate offers to new campaigns attempting to compromise business email systems, perpetrate identity theft and push drive-by downloads.
Leave a reply