A new phishing campaign is exploiting contact forms on business websites to spread malware and bypass traditional email security. The method targets businesses worldwide.
Check Point Research has discovered a phishing campaign that uses contact forms to reach businesses. The campaign requires extensive work and patience. The attackers pose as potential business partners and conduct credible email conversations over several days or weeks.
Once trust is established, they eventually send a ZIP file containing a supposed confidentiality document. In reality, the file contains MixShell malware.
Attack via Everyday Communication Channels
The malware uses techniques such as DNS tunneling and HTTP fallback to execute commands undetected and spread further within the corporate network. The attack method is sophisticated: criminals even build fake websites of real companies to support their story.
A second wave of the campaign capitalizes on the popularity of artificial intelligence. Attackers send emails in the name of management about alleged AI impact assessments, requesting recipients to complete a questionnaire. Here too, malicious files ultimately lurk behind the communication.
Risk to Supply Chain and Intellectual Property
According to researchers, the ZipLine campaign primarily targets American manufacturing companies, but also businesses in Europe and Asia. The risks include theft of intellectual property, ransomware attacks, and supply chain disruptions.
Check Point warns that companies must prepare for this approach and offers several tips. Organizations are advised to actively monitor not only email traffic but also communication via contact forms and other collaboration tools. Training for staff is crucial to recognize the early signs of phishing.
Verifying business contacts through independent sources can help detect fraudulent attempts. Finally, it remains important to have ZIP files and attachments thoroughly checked by security tools. Phishing is a tried and tested recipe for cybercriminals, who are increasingly creative in developing new techniques to deceive victims.