A phishing campaign spoofed DHL’s delivery service as way to collect personal information, including credit card data, from victims. The fraudsters used encrypted Telegram channels to transfer stolen data, according to FireEyes report. They also appeared to be using Web Open Font Format – WOFF – as a substitution cipher, which helped them avoid detection by security tools. The campaign, which mainly targeted victims in the Americas and Europe, started around the December 2020 holiday season when delivery services were in greater demand.”]
Source: https://www.fraudtoday.io/phishing-campaign-spoofed-dhl-delivery-service-a-15878