Threat Alert: SPOOFED BUSINESS Lures Spread Remote Management Software

• A series of phishing attacks are impersonating numerous brands, including USPS, Amazon, and Optimum
  Mobile.
• The phishing lures contain explicit calls to action for recipients to click on a malicious URL.
• Clicking on the URL ultimately leads to the installation of the Remote Monitoring and Management (RMM) tool ScreenConnect on the recipient’s device.
• Attackers can then use ScreenConnect for malicious activity like stealing credentials or other sensitive information.

Key Action: Report Suspicious Emails 

• Go beyond surface clues. Familiar logos, branding, and names are not automatic indicators that an email or website is safe. Cybercriminals often imitate well- known organizations.
• Remain alert to phishing indicators. Mismatches between sending addresses and an organization’s name are always warning signs.
• Report ANY suspicious emails using the Phish Alarm button.