Threat Alert: Partnership Proposal-Themed Lure Leads to Malware

• A series of phishing attacks is using proposal-themed lures.
• The emails originate from the sender “ArtPal”; however, the sending address is from an entirely different, unassociated domain.
• The lures discuss purported company partnerships and use themes related to business affairs and operations to deceive the recipient.
• The messages encourage recipients to open an attached .zip file that ultimately leads to malware execution on a user’s device.

Key Action: Report Suspicious Emails 

• Remain alert to phishing indicators. Mismatches between sending addresses and an organization’s name are always warning signs.
• Never download attachments or “enable content” associated with unexpected messages. These actions can expose you to malware.
• Report ANY suspicious emails using the Phish Alarm button.