Skip to content

SocGholish finds success through novel email techniques

Posted by:
< 1 min read

November 23, 2022 – Published on SC Magazine

Researchers at Proofpoint revealed more technical details about SocGholish, the malware variant they identified earlier this month, highlighting its noteworthy tactics that differ from traditional phishing campaigns.

According to a Proofpoint blog post Tuesday, SocGholish deviates from the norm by forgoing all the classic staples of modern phishing, such as instilling a sense of urgency, promises of rewards, and misdirection. Instead, researchers found that SocGholish is leveraged in email campaigns with injections on sites, mainly targeting organizations with extensive marketing campaigns or strong Search Engine Optimization.

Drew Schmitt, managing security consultant and lead analyst at GuidePoint Security, expanded on that point, telling SC Media in an email that SocGholish hasn’t been observed using this attack vector before, and their email-based attacks combined with download style infections “is unique in the sense that it explicitly avoids having characteristics that the average user would be able to detect and identify.”

Read More HERE.

Categories: Incident Response & Threat Intelligence News
Tags:GRIT

GuidePoint Security

Phishing themes. Emotet returns. Russian broadcast hacked. Hunting forward as an exercise in threat intelligence collection.
June 9, 2022 – Published on the cyberwire In the Trends section of their daily news briefing, the cyberwire included a […]
View Page

Related Articles

View All

  • Cybersecurity
Phishing themes. Emotet returns. Russian broadcast hacked. Hunting forward as an exercise in threat intelligence collection.
Read More < 1 min read
Threat Intelligence as a Service (TIaaS)
Read More 4 min read
How to Effectively Use Threat Intelligence to Drive Better Security Outcomes
Read More < 1 min read