Microsoft warns of a “massive email campaign” that’s pushing a Java-based STRRAT malware. The malware is known for its “ransomware-like” behavior of appending the file name extension to files without actually encrypting them. The new wave of attacks commences with spam emails sent from compromised email accounts with “Outgoing Payments” in the subject line. The recipients are luring them into opening malicious PDF documents that claim to be remittances, but in reality, download the malware.
Source: https://thehackernews.com/2021/05/microsoft-warns-of-data-stealing.html