Summary: A recent Infoblox Threat Intel report reveals the extensive use of spoofed domains in spam operations, highlighting how threat actors exploit neglected domains to bypass security measures. The report categorizes various malspam campaigns and emphasizes the financial gains for cybercriminals despite advancements in email security.
Threat Actor: Muddling Meerkat | Muddling Meerkat
Victim: Global Users | global users
Key Point :
- Domain spoofing is a tactic where threat actors falsify sender email addresses to appear legitimate.
- Neglected domains without proper DNS records are prime targets for bypassing security checks.
- Malspam campaigns include QR code phishing, brand impersonation, extortion threats, and mysterious attachments.
- The investigation revealed a significant increase in known Muddling Meerkat target domains.
- Despite advancements in email security, spoofed domains remain a lucrative tactic for cybercriminals.