Spear phishing attacks
Phishing (T1566) is one of the oldest and most effective methods of gaining access, especially when we are talking about targeted or spear phishing. Its popularity comes partially from the fact that phishing exploits vulnerabilities that can’t simply be patched or removed; it exploits people. Attackers have been around for a long time and have learned how to use social engineering and manipulate people to achieve their goals. They use fear, greed, curiosity, and inattention to convince people to perform necessary actions – click on a link, download and run a program, open a document, or pass on sensitive information, such as credentials for a remote access connection. The most common targets of phishing emails are employees who work with large volumes of emails daily – HR, Finance, Legal, Customer Service, and so on. APT29, APT41, FIN7, DarkHotel, MuddyWater, RTM, and Earth Yako (https://www.trendmicro.com/en_us/research/23/b/invitation-to...
