Anomali researchers have identified a credential harvesting campaign designed to steal the login credentials for multiple government procurement services from a range of international countries. The procurement services are used by multiple public and private sector organizations to match buyers and suppliers. This whitepaper aims to provide an overview of the discovered phishing campaign. We’ll cover: The targeted landscape and spoofed organizations;Lure documents and credential harvesting sites; Threat Infrastructure Analysis;Threat Infrastructure Analysis. Specific indicators of compromise (IOCs) associated with the campaign.”]

