Wouldn’t it be something if you managed to spear-phish the technical director of an anti-malware company? The criminal kudos would be sky-high; but just imagine the possible effect of getting top-level credentials into a cloud-based anti-malware product that automatically pushes out updates to millions of customers. Worth a try, I think.
And try they do. Luis Corrons, technical director of PandaLabs sent me a recent example. It was an email with an attachment. The email was correctly addressed to him personally, and seemed to come from a genuine company.
Leave a reply