Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. SpamAssassin>
  3. users
How is this phishing attack called?
mercurialuser at gmail
Feb 15, 2023, 11:50 AM
Post #1 of 2 (107 views)
Permalink
And how to intercept?

From time to time we receive a message that is a reply-to to an old
message, sometimes after months, with just several lines added at the top
inviting to open a url or attachment.

Has this kind of phishing a name?
How can I prevent it or at least flag it for review?

Thank you
Re: How is this phishing attack called? [ In reply to ]
jared at jaredsec
Feb 15, 2023, 9:52 PM
Post #2 of 2 (107 views)
Permalink
On 2/15/2023 2:50 PM, hg user wrote:
> And how to intercept?
>
> From time to time we receive a message that is a reply-to to an old
> message, sometimes after months, with just several lines added at the
> top inviting to open a url or attachment.
>
> Has this kind of phishing a name?

QakBot and Emotet malware bots all do this.  They've been battered, but
they're still around.  Deceptively clever.

> How can I prevent it or at least flag it for review?

For some starters: Keep AntiVirus scanning software updated.  Use the
OpenPhish and PhishTank URL lists.  Use URI RBL's.

>
> Thank you

-- Jared Hall

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal