Threat Alert: Phishing Attacks Abuse Carrier411 Brand

• Recent phishing attacks are abusing the brand of Carrier411, a legitimate organization that provides oversight and freight carrier safety ratings.
• The phishing lures appear to come from the sender “Carrier411 Services, Inc.” However, the lures actually come from unassociated Gmail accounts.
• The lures use the subject line “Essential Notice: Review Blacklisted Dishonest Companies” and warn in the email body of carrier fraud. The emails encourage recipients to follow a provided link to learn more.
• Following the link ultimately leads to the installation of malware.
• These attacks appear to be focused on organizations within the manufacturing and logistics verticals.

Key Action: Report Suspicious Emails 

• Remain alert to phishing indicators. Mismatches between sending addresses and an organization’s name are always warning signs.
• Remember cybercriminals take advantage of strong emotions. An email appearing to come from a legitimate organization warning of fraud and branding itself an essential notice can provoke feelings of anxiety and urgency.
• Report ANY suspicious emails using the Phish Alarm button.