Some military personnel and their families(say about 23) in United States are being constantly targeted by phishing campaigns launched by a notorious online criminal gang from Nigeria that is habituated to ignore the Digital Millennium Copyrights Act and such.
Reports are now in that they have gained monetary benefits from the attacks to a certain extent.
Threat Researchers from LookOut where the first to discover these cyber incidents and warned the military personnel and agencies to improve their cybersecurity posture and follow a better cyber hygiene to avoid falling prey to phishing attacks.
In what is known to our Cybersecurity Insiders, hackers steal sensitive details like names, phone numbers, addresses and online account passwords of individuals to commit banking related frauds later.
After gaining sensitive details, fraudsters can easily steal identity of an individual and empty their bank account without their knowledge.
Coming to the phishing campaign targeting the military personnel, they are being lured into an online fraud trap through fake websites. The website link is being sent to them via email and when clicked it leads them to a web page seeking to submit personnel details.
Concernedly, the fraudsters have sent emails impersonating the content of the one sent by the Department of Defense services.
Note 1- The only good part of this campaign is that only a few military personnel or their families have fallen prey to the attack, while others were either well versed with what is happening in the current cyber landscape or somehow avoided trouble. Awareness seems to be a key factor over here in avoiding all kinds of cyber troubles!
Note 2–A phishing campaign is a kind of digital attack where fraudsters are seen distributing malicious content via email and SMSes that appear to come from reputable sources. The aim behind the launch of attacks is to steal credit card info, login data, or to install malware to encrypt a database or an entire network until a ransom is paid.