Received an Income Tax Notice via Email? Wait! Is this a dangerous scam?
Email: Cases of online fraud have been reported in India before, but now cybercriminals have adopted a new method.
Email: Cases of online fraud have been reported in India before, but now cybercriminals have adopted a new method. According to recent reports, hackers are targeting people through fake emails that look exactly like notices from the Indian Income Tax Department. These emails pressure users to take immediate action by instilling fear of tax penalties or fines.
How does this phishing scam work?
Cybersecurity experts have found that these fake emails have a ZIP file attached. As soon as the user downloads it, a multi-stage infection begins in the system. The entire attack aims to install the Blackmoon banking Trojan in the system, along with a legitimate but misused tool.
Misuse of legitimate software
In this attack, an enterprise management tool called SyncFuture Terminal Security Management (TSM) is being misused. This software is normally designed for companies, but cybercriminals are using it for espionage and data theft. According to researchers, this allows attackers to maintain a long-term hold on the system and continuously monitor user activity.
How does the attack begin?
According to the report, the ZIP file contains several hidden files, but the user only sees one file named like a government document. Opening this file activates the malware, which then connects to an external server and downloads the remaining malicious files. All of this happens like a legitimate Windows process so that no one suspects anything.
Hackers gain complete control over the system
Once the malware is installed, hackers can not only steal sensitive data but also gain complete control over the PC. This involves monitoring user activity in real time, evading security software, and maintaining a persistent presence in the system. Experts say the techniques used in this attack are quite advanced, indicating serious intent on the part of the hackers.
