spot_img

Date:

Share:

Kaspersky has detected a multi-stage phishing attack targeting manufacturing facilities in Europe, Asia and the Middle East

Kaspersky experts have uncovered a phishing campaign targeting manufacturing facilities in multiple countries across Europe, Asia and the Middle East. The attackers are sending English-language emails, allegedly from potential customers interested in respective products, attempting to extort corporate data. The campaign began in April 2026 and is still ongoing.

The phishing scheme includes several stages. First, potential victims receive an email from an alleged interested buyer asking for clarification on the product, such as the exact pricing or availability.

If the recipient responds, they are then sent a link to download a file with the product’s technical specifications, either immediately in a subsequent email or after further discussion and questions. Clicking on the link takes the user to the next phishing page mimicking a popular cloud service for working with PDF documents.

The user is then directed to an “authorisation form” asking for corporate email address and password – allegedly for security purposes to prevent unauthorised access to the file. In reality, this is a ploy by attackers to trick users into revealing corporate data.

Kaspersky has detected a multi-stage phishing attack targeting manufacturing facilities in Europe, Asia and the Middle East
A phishing page tricking users into submitting corporate credentials

“We see spear phishing campaigns evolving. Attackers are increasingly moving from simple schemes to complex campaigns consisting of multiple stages, as this increases the chances of a successful attack. They also thoroughly prepare, researching organisations to craft the most convincing cover stories. For example, they develop attack scenarios tailored to the specific operating conditions of manufacturing companies. Attackers often employ AI tools to craft phishing emails or automate other processes. To reduce risks, organisations need to pay increased attention to security – implementing reliable technical tools and improving employees’ cyber literacy,” comments Roman Dedenok, Anti-Spam Expert at Kaspersky.

To defend organisations against this threat, Kaspersky recommends:

  • Deploying a proven mail server security solution such as Kaspersky Security for Mail Server that provides secure corporate email exchange, countering spam, email-borne infections, all forms of phishing, business email compromise (BEC), QR code attacks, and other threats.
  • Providing cybersecurity teams with up-to-date information on the latest tactics, techniques and procedures of attackers by using Kaspersky Threat Intelligence services.
  • Improving employees’ cyber literacy through specialised courses or training, such as those on the Kaspersky Automated Security Awareness Platform.
spot_img
spot_img

━ More like this

Why omnichannel communication is becoming a critical defence against digital fraud

Digital payments may be accelerating the growth of West Africa’s economy, but with new fraud tactics emerging, organisations are increasingly relying on omnichannel communication...

Manufacturing SMEs can adopt AI at the pace they want, with the right funding approach

South Africa’s manufacturing sector contributes close to 11% of the country’s gross domestic product (GDP) and was one of only three industries to add jobs in...

TikTok expands AI transparency and literacy efforts across Sub-Saharan Africa

As part of the AI for Good Global Summit hosted in Geneva, TikTok has announced a series of initiatives globally designed to strengthen AI...

The risk of AI tunnel vision in IT efficiency

It would be impossible to fix a city’s traffic congestion by widening a single busy highway. Yet today’s conversation around IT efficiency risks falling...

AI can strengthen storytelling, but human experiences must remain at the heart of film.

As artificial intelligence rapidly reshapes the global film industry, emerging South African filmmaker Oratile Prudence Sesinyi is encouraging creatives to embrace the technology without losing sight...
spot_img