Foreign attackers email phishy invoices to Mandiant CEO

Share this article:

The head of a firm, which uncovered major findings on China-based espionage efforts, realized he was the target of phishers in the country.

Kevin Mandia, CEO of Alexandria, Va.-based incident response and forensic firm Mandiant, recently shared the details of the ruse to Foreign Policy magazine. In a Monday article, the publication revealed that saboteurs were sending Mandia malicious emails designed to look like invoices from a limo company he frequently used.

“I've been receiving PDF invoices not from them, but from an [advanced hacking] group back in China; that's awesome,” Mandia reportedly said. The CEO discovered something was awry when he began receiving receipts on days he hadn't used the limo service.

Further investigation confirmed Mandia's suspicions – that the emails contained a malicious payload.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

CryptoWall surpasses CryptoLocker in infection rates

CryptoWall surpasses CryptoLocker in infection rates

A threat analysis from Dell SecureWorks CTU says that CryptoWall has picked up where its famous sibling left off.

Professor says Google search, not hacking, yielded medical info

Professor says Google search, not hacking, yielded medical ...

A professor of ethical hacking at City College San Francisco came forward to clarify that he did not demonstrate hacking a medical center's server in a class.

Syrian Malware Team makes use of enhanced BlackWorm RAT

Syrian Malware Team makes use of enhanced BlackWorm ...

FireEye analyzed the hacking group's use of the malware, dubbed the "Dark Edition" of BlackWorm.