January 12, 2021

Possible email server attacked? Maybe i’m just crazy

Hey all – I’m the lone cyber guy for my company. Recently we’ve been getting some intense phishing emails, all stopped by outlook malware filter thankfully, but spooky nonetheless

These emails recently have been referencing some incredibly detailed information about the company

Example, one was caught that was talking about setting up a new contract, that referenced a contact we’ve previously talked to, it looked incredibly real apart from the fucked email address

Today we’ve gotten 3 asking about a payment that was never sent for a service we use, we actually use the service, and already paid the invoice in October. Weird part is, it was setup to look like it was forwarded, and had the actual emails that were sent back in October, just a forward with “Hey we’re still waiting for you to pay this invoice” and the attached invoice tripped the malware filter. Rescan shows positive malware

I’m a bit new to cybersec so I wanted to check here and cover my bases. Is this just super advanced or is it possible we are being targeted because someone has access to our email server? Is my thinking correct here? Too much thinking? Thanks

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.