Rewterz Informative Update – Best Practices for Internet Safety

August 9, 2019
Rewterz

Rewterz Threat Advisory – Windows 10: Privilege Escalation Vulnerabilities Found in Over 40 Drivers

August 13, 2019

Rewterz Threat Alert – FBR Phishing Page Targeting Multiple Banks

Severity

High

Analysis Summary

A new phishing campaign targeting financial sector in Pakistan impersonating as FBR tax refund asking for credentials. This comes up as a critical moment when Pakistan Government is acting upon to document the taxation procedure and giving customers a chance to file the tax and set a precedent to encourage local people to ensure smooth procedure of taxation process.

The phishing page in this local campaign is luring customers to get a refund on their tax returns which later on targets the customers for their credentials.

image-1565429732.jpg

Impact

  • Credential theft
  • Financial loss

Indicators of Compromise

Email Address

refund@fbr.gov.pk

Email Subject

FBR: Your 2019 Tax Refund Notice

Remediation

  • Always be suspicious about emails sent by unknown senders.
  • Never click on the link/ attachments sent by unknowns users.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.