PayPal users change your password and setup 2 Factor Authentication (2FA)
Unusual New Botnet-driven Phishing Attack With Tricky Downloaders
A large phishing campaign is distributing malicious Excel documents and utilizing irritating pop-ups to trick users into enabling macros, researchers at Lastline have found. The campaign is primarily focused on the Asia-Pacific region, and it’s using both generic spam emails and spearphishing to reach its targets. The malicious macros act as downloaders for more advanced information-stealing malware, including Agent Tesla and LokiBot.