A new spear-phishing campaign is targeting professionals on LinkedIn with weaponized job offers in an attempt to infect targets with a sophisticated backdoor trojan called more_eggs. The phishing lures take advantage of malicious ZIP archive files that have the same name as that of victims’ job titles taken from their LinkedIn profiles. The adversaries behind this new wave of attacks remain unknown as yet, although the attackers are still unknown. The latest development is yet another indication of how threat actors are constantly tweaking their attacks with personalized lures.
Source: https://thehackernews.com/2021/04/hackers-targeting-professionals-with.html