Attack Stories Archives - Abnormal Security

Subscribe to receive twice-monthly updates of the latest attacks we've detected in the wild:

Election Interference & Social Engineering

Abnormal Security detected attacks launched against our customers that purport to be from the “Proud Boys”, a violent hate group, directing recipients to vote for Donald Trump in the upcoming election.

Read more

Microsoft Teams Impersonation

In this attack, an impersonated Microsoft Teams email is used to deliver a phishing campaign.

Read more

Vendor Impersonation Payment Fraud

In this attack, attackers impersonate a known vendor account in order establish a relationship, and possibly extort products or money.

Read more

Azure Spear Phishing

In this attack, a marketing tool is used to deliver a spear phishing campaign.

Read more

Bitcoin Extortion

In this attack, attackers extort recipients for a Bitcoin transfer in exchange for not revealing personal information that they claim to have stolen in a hack.

Read more

COVID-19 Vaccine Tracker

In this attack, attackers impersonate the US Department of Health and Human Services in order to install malware on employees’ devices.

Read more

Compromised Vendor Spear Phishing Attack

In this attack, attackers compromise a vendor account in order to steal those credentials from employees.

Read more

RFQ Scam

In this attack, attackers are impersonating the United States Transportation Command Office of Small Business Programs, sending an RFQ in order to steal goods from their targets.

Read more

State of Texas Impersonation

In this attack, attackers impersonate a Texas Government Request for Quotation in order to receive free goods.

Read more

9/11 Press Release Malware

Attackers utilize a 9/11 press release from an impersonated partner to deliver malware to recipients.

Read more

Canada Post Phishing

In this attack, malicious actors impersonate Canada Post to steal victims’ personal and billing information.

Read more

Compromised Vendor and Sharepoint Phishing

In this attack, a compromised vendor attempts to steal victims’ email credentials.

Read more