Kaseya has issued a warning Thursday evening about a phishing campaign they were notified about that is posing as security updates. Threat actors are using the news about the Kaseya incident to try and lure more people to click on links and malicious attachments within emails that are being sent out that are designed to mimic the VSA security updates. Kaseya has warned not to click on any links or attachments included in emails that claim to be security updates from them and that moving forward the company would not be sending any links or attachments in their updates to prevent any type of confusion. The attacks target victims with a Cobalt Strike payload according to Kaseya.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased