password BV1 to open a link in Phishing email?
We have today (03/11/2022) noticed a huge surge in targeted phishing emails hitting business and personal accounts. One common factor in these emails seems to be “password BV1” supposedly to access documents in a link.
Password BV1 Phishing Emails – Which hacking group?
It’s clear this is a targeted campaign to breach email accounts from a hacking group. The common use of the text “Password BV1” suggests all these emails are coming from the same group.
Although the emails generally contain a genuine email chain which has clearly been compromised by the hackers accessing another account, there is also a lot of broken English.
In some of the emails we have observed, they have simple mistakes in such as “Check, review and sign this contract as well:”
They have also been saying “Good afternoon” when the emails have been delivered in the morning.
Why are the hackers adding “Password BV1” in the email?
In the emails we have observed, it appears as if the hackers are trying to encourage the target to click and open a link. By saying there is a password to access the document, it suggests this is a secure attachment.
What Should You Do About This?
This email phishing campaign seems to be widespread at the moment, we are seeing multiple reports on social media as well. Please warn all employees within your business about this and the increased risk of targeted phishing utilising previous genuine emails.
You may also find some of our other resources useful below:
Why Small Businesses are at Higher Risk of Cyber Attacks
All businesses are at threat from Cyber attacks, however, small businesses are at higher risk for many reasons.
How Hackers Easily Target Businesses
You might be thinking, how do hackers decide on which businesses to target? What if your business is on their list?
Most Common Types of Phishing Scams
In this video, We explain the most common types of phishing scams and how you can avoid being caught out tby them.
Get In Touch.
If you have any questions about data breaches and how your business can avoid them, feel free to contact us by calling 01158 244 824 or email us using the button below.