New Phishing Attack Adds a Call Center Step to Get You to Download Malware

New Phishing Attack Adds Call CenterUnlike traditional phishing emails that simply attach or link to a malicious file, a new scam from cybercriminal group BazaCall makes victims call in and be instructed to download the malware.

It seems a bit counterintuitive; instead of just phishing the victim with a malicious attachment, let’s make them interact with a call center who will then convince them to open a malicious Excel file. But, according to Microsoft Security Intelligence, this is exactly what the folks at BazaCall are doing.

Using a phishing email themed around a fictitious software trial being over in 24 hours and the potential victim needing to pay for the software if they don’t cancel, BazaCall trick victims into calling in to cancel the “subscription” they know nothing about.

During the call, the victim is instructed to download a malicious Excel file that contains a macro which downloads the malware BazarLoader. This group has also been observed using Cobalt Strike penetration testing kit to steal credentials and move laterally within the victim networks.

While the added step of making someone call a scammer on the phone just to do the equivalent of double-clicking an attachment seems ludicrous, this does add credibility to the process and may lower the victims defenses long enough for the malicious Excel file to do its’ work.

This scam is actually pretty smart, as it goes to such lengths to establish itself as legitimate that someone who wouldn’t fall for an email saying “you owe us money – see the attachment” may actually fall for this one. It’s one of the reasons Security Awareness Training is so important. Users need to be continually educated on the latest scams, methods, and social engineering tactics used to ensure they are always on guard.

Free Phishing Security Test

Would your users fall for convincing phishing attacks? Take the first step now and find out before bad actors do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

PST ResultsHere's how it works:

  • Immediately start your test for up to 100 users (no need to talk to anyone)
  • Select from 20+ languages and customize the phishing test template based on your environment
  • Choose the landing page your users see after they click
  • Show users which red flags they missed, or a 404 page
  • Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
  • See how your organization compares to others in your industry

Go Phishing Now!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

Topics: Phishing

Subscribe To Our Blog

Cybersecurity Awareness Month 2021 Free Resource Kit

Get the latest about social engineering

Subscribe to CyberheistNews