Threat Alert: Eventbrite-Themed Lures Distribute Malware 

• Cybercriminals have launched a series of phishing attacks abusing Eventbrite branding. 
• The lures are intended to look like they come from Eventbrite; however, the reply-to email address is support[@]ev3ntbr1te[.]com. Note the substitution of numbers for letters, which is a common cybercriminal method for creating a lookalike email address. 
• The lures encourage recipients to follow a shortened link to sign a purportedly updated user agreement in order to continue receiving payouts. 
• Following the link leads to the installation of malicious software (malware) on the recipient’s device.  

Key Actions (at Work and at Home) 

• Go beyond surface clues. Familiar logos, branding, and names are not automatic indicators that an email or website is safe. Cybercriminals often imitate well-known organizations.      
• Remain alert to phishing indicators. Mismatches between sending addresses and an organization’s name are always warning signs, as are apparent substitutions of characters in an email address or web page URL.  
• Remember cybercriminals take advantage of strong emotions. An email warning of issues related to receiving payments can be extremely stressful. Keep in mind cybercriminals seek to capitalize on moments of anxiety and the difficulty in thinking clearly in such situations.  
•  Report any suspicious emails using the Phish Alarm Button.