Phishing Fiasco: Tax Lures Target Pakistan in Stealthy Attack

Cybersecurity company Securonix has detected a phishing campaign dubbed FLUX#CONSOLE targeting Pakistan. This sneaky operation uses tax-themed tricks and disguised MSC files to deliver a backdoor payload. The attack starts with a file masquerading as a PDF, only to unleash chaos. Securonix disrupted the attack within 24 hours.

3P
Published: December 17, 2024 2:47 pmAdded: December 17, 2024 at 7:08 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Who knew tax season could be so ‘enthralling’? While most of us are simply trying to avoid an audit, some crafty cybercriminals are using tax-themed lures to sneak into systems like a stealthy ninja in a suit. Looks like the only thing more inevitable than death and taxes is a good ol’ phishing attack!

Key Points:

  • Cyberattack targets Pakistan using tax-themed phishing lures.
  • Attackers use MSC files to deploy a dual-purpose loader and dropper.
  • The campaign disguises malicious files as legitimate documents from Pakistan’s FBR.
  • Persistence is achieved through scheduled tasks and remote HTML file executions.
  • The attack was disrupted 24 hours after initial infection.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?