16Shop Now Targets Amazon (Jul 12, 2019)
McAfee Labs have identified a phishing kit, named “16Shop” being used to target Apple Account users to inputting payment details. Using a PDF file, the actors redirect users to a fake website. According to McAfee, the author of the kit is an individual involved with an Indonesian hacking group named “Indonesian Cyber Army”. The phishing kit is now targeting Amazon customers in a similar manner, in order to steal account holders’ information.
Recommendation: Users should always exercise caution when receiving emails that ask for payment or account details, and ensure they are being sent from a legitimate source. Emails that attempt to redirect a user to a link should be viewed with scrutiny.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.