Cybercriminals are targeting the oil and gas industry sector with highly targeted spearphishing campaigns. They are impersonating shipment companies and engineering contractors while attempting to infect their targets with Agent Tesla info-stealer malware payloads. This is the first time that Agent Tesla has been deployed as part of attacks targeting oil & gas vertical. The attacks aren’t as sophisticated as others that have previously targeted energy companies, but timing is on point given that they were active before and during a marathon of meetings and calls between the OPEC+ alliance and the Group of 20 nations that ended with a historic deal to cut the global petroleum output.
Source: https://www.bleepingcomputer.com/news/security/spearphishing-campaigns-target-oil-gas-companies-with-spyware/