Threat actor targeting UK banks in ongoing AnyDesk social engineering campaign
Aug. 9, 2024, 12:12 p.m.
Description
Threat analysts are tracking an ongoing campaign that employs fake websites and social engineering tactics to distribute a malicious version of the AnyDesk remote access software to Windows and macOS users. Once installed on a victim's machine, it is being utilized to steal data and money. The campaign primarily targets UK banks like HSBC, Natwest, Lloyds, Santander, and Virgin Money, as well as Avast, Ledger, and Wise.
Date
Published | Created | Modified |
---|---|---|
Aug. 9, 2024, 11:45 a.m. | Aug. 9, 2024, 11:45 a.m. | Aug. 9, 2024, 12:12 p.m. |
Attack Patterns
AnyDesk
T1200
T1071.004
T1528
T1059.001
T1572
T1497
T1071.001
T1105
T1055
T1219
T1498
T1204
T1566
T1059
Additional Informations
Finance
United Kingdom of Great Britain and Northern Ireland