from SANS Internet Storm Center, InfoCON: green
Yesterday, the German federal CERT (CERT-BUND) warned of phishing e-mails that are more plausible by using data that appears to originate from the recently leaked LinkedIn data set. The e-mail address the recipient by full name and job title. Typically, the attachments claim to contain an invoice.
We have since received a couple of users who reported receiving e-mails that match the pattern. For example:
The e-mails arrive in different languages. They address the recipient by full name, job title and company name, to make the e-mail more plausible.
