Social engineering attacks are becoming more sophisticated and expanding to increase the range of available targets. This attack campaign is currently pushing the Zeus Panda banking Trojan. The attack entails tricking a target into going to a specific URL that is hosting javascript code that starts the attack. Once a Firefox user visits the site, they will be shown an alert stating that “The “”HoeflerText”” font was not found”” and that they need to update the “”Mozilla Font Pack”” Once a user clicks on the Update button
Source: