Massive Spam Operation Hijacks Trusted Brands: Over 8,000 Domains Compromised

A large-scale malicious campaign, dubbed “SubdoMailing” by security researchers at Guardio Labs, has come to light. This campaign involves the hijacking of over 8,000 domains and a staggering 13,000 subdomains belonging to well-established and trusted brands and institutions. This activity, believed to have been ongoing since at least September 2022, highlights the growing sophistication of cybercriminals and the ever-present threat of spam and phishing attacks. Modus Operandi: The attackers behind SubdoMailing leverage compromised legitimate domains and subdomains to distribute spam emails on a massive scale. These emails often appear to originate from trusted senders, making them difficult for recipients to identify as malicious. The content of these emails varies, ranging from seemingly harmless “counterfeit package delivery alerts” to blatant attempts to steal user credentials through phishing tactics. Impact and Concerns: The widespread nature of this campaign raises significant concerns for several reasons: Recommendations: To protect yourself from falling victim to SubdoMailing or similar campaigns, it’s crucial to exercise caution and vigilance when dealing with emails: By remaining vigilant and following these recommendations, you can significantly reduce the risk of falling victim to SubdoMailing and similar email-based threats. Remember, staying informed about the latest cyber threats and adopting safe online practices are crucial steps in protecting yourself and your information in the digital age. Join our internship to learn more about web application penetration testing and cybersecurity: Click me

Massive Spam Operation Hijacks Trusted Brands: Over 8,000 Domains Compromised Read More »