Also spotted recently are malware downloading links distributed via email. The embedded links navigate to a file-hosting website where the malware is stored to avoid detection by email spam and greyware filters.
The following two examples (figures 3 and 4) of these embedded links are relatively easy to identify as the email will be from an unrecognised sender and are generally claimed to be for EFT confirmations, invoices, court summonses, and so on. In the real world, legitimate emails for this content will contain secured documents or PDFs, not links to them.
Figure 3: Court Injunction Letter Phishing Scheme
Figure 4: ABSA POP Malware Download Scheme
Figure 5: EFT Payment Malware Download Scheme
