New research has uncovered a significant increase in QuickBooks file data theft using social engineering tricks to deliver malware and exploit the accounting software. The spear-phishing attacks take the form of a PowerShell command that’s capable of running inside of the email, the researchers said. A second attack vector involves decoy documents sent via email messages that, when opened, download malicious code which uploads QuickBooks files to an attacker-controlled server. The operators behind the attacks resorted to bait-and-switch tactics to lure customers into making fraudulent bank transfers.
Source: https://thehackernews.com/2021/02/experts-warns-of-notable-increase-in.html