The campaign is more sophisticated than previous ones and is purely financially motivated, according to Check Point Software researchers. The discovery of this campaign highlights the evolving sophistication of cyber threats and the increasing use of AI by cybercriminals to enhance their reach and operational scale. The researchers suggest that security leaders should prioritize automation and AI in their defense strategies to counteract these globally scaled, financially motivated phishing campaigns.
Key takeaways:
- A new large-scale cyber attack campaign, dubbed CopyRh(ight)adamantys, is leveraging Gmail and AI to target both consumers and corporates with a financially-motivated payload.
- The attack uses a newly discovered variant of the Rhadamanthys information stealer malware and a false premise of the victim being responsible for copyright infringement violations.
- The cyber attackers are using dedicated Gmail accounts to distribute emails that impersonate legitimate organizations to claim copyright violations on social media accounts, primarily Facebook.
- The discovery of the CopyRh(ight)adamantys cyber attack campaign highlights the evolving sophistication of cyber threats and the increasing use of AI and automation by cybercriminals to enhance their reach and operational scale.