Monday, March 5, 2012

Intuit and BBB Under Targeted Attacks - Phishing (Malware)

About BBS and Intuit: Better Business Bureau is an ethical marketplace where buyers and sellers can trust each other, as defined here . Intuit provides a powerful software as a service platform.

ALERT: Be careful in clicking links.

BBB and Intuit are under targeted attacks. Other organization that is under targeted attacks. Phishing emails pointing to malicious domain serving obfuscated iframes are being thrown in the wild at a rapid pace. The emails look very legitimate but a single click can cause a serious damage. Since these are big organizations, we feel that risk is much higher. That's why the alert is here.

Malicious - Phishing Email Targeting - BBB

Malicious - Phishing Email Targeting - INTUIT

The gift that malicious domain send us is presented below(truncated version)

The deobfucation details of this script will be posted soon. We are analyzing other facets of this targeted attack.