Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Operation Email Stealer

The campaign targets the banking sector with spear-phishing emails containing malicious attachments in attempt to steal emails and account passwords from the infected host. The malware is signed by a well-known SSL Certificate Authority to avoid detection but sends back the stolen information to command and control servers unencrypted. The threat actor deletes the files used in the operation from the infected computer to remain undiscovered.
Name Modified Date Sources
Operation Email Stealer 2019-05-21