Threat Alert: Phishing Attacks Use Lawsuit-Themed Lures to Spread Malicious Scripts

• Cybercriminals have launched a series of phishing attacks, personalized to each recipient, requesting urgent assistance regarding an ongoing lawsuit affecting the recipient’s organization.
• The lures contain a malicious PDF with an embedded URL. 
• Opening the PDF leads to a pop-up window asking for users to grant authorized access to the document by clicking an “Auth” button. Clicking the button ultimately leads to the installation of malicious software (malware) on the device. 

Key Actions (at Work and at Home)

• Beware of strong appears to emotion. Cybercriminals look for ways to increase pressure on recipients of phishing emails. Lures mentioning lawsuits are intended to increase the chances of interaction with malicious attachments or URLs.  
• Verify the legitimacy of any unsolicited/unexpected email before you interact with it, especially if it directs you to click on a link or download a file. It can be tempting to click on a “call-to-action.” But if you notice a subtle change or inconsistency within a message, don’t ignore it—report it. 
• Report ANY suspicious emails using the Phish Alarm button. Remember: Our organization occasionally sends phishing simulations.