Phishing emails are still a big danger to PC users, even in 2022

pcgamer.com:

If there's one thing 2022 has proved, It's that it's not just your grandparent's computers you need to be worried about. In the era of Discord hosted malware and NFTs, there's more threats than ever before coming for your digital data. It's easy to forget that something as simple as phishing emails exist, and are causing big problems for people's security. 

Several sites are reporting an increase in phishing emails attempting to install malware on unsuspecting PCs. According to The Register, bad actors are using Microsoft Exchange servers that have been compromised to send out spam emails. Attached to the emails is an encrypted file, typically a .zip, continuing the malware known as IcedID.

The .zip file will often come with a password to unpack the file. In the emails this is presented as a layer of security to help make the victim feel more at ease. Instead entering the passcode will allow IcedID to immediately install onto the computer. 

This malware then provides a backdoor for further installations from the criminals. Often this access is sold to another party wanting to install ransomware onto the machine.

Windows 11 review: What we think of the new OSHow to install Windows 11: Safe and secure installWhat you need to know before upgrading: Things to note before downloading the latest OSWindows 11 TPM requirements: Microsoft's strict security policy

Intezer further explains that the reason these emails are so convincing is due to thread hijacking. The emails containing the malware are often presented as a reply to a previously stolen email, making them look more valid and less randomised. Intezer also does a bit of a deep dive into how this new attack campaign is working which is worth a look for anyone interested