![why did trend micro security pop up why did trend micro security pop up](https://www.safetydetectives.com/wp-content/uploads/2021/10/trend-micro-review-3.png)
The attack sounds familiar: Earlier this month, Trend Micro published a report about attackers who were doing the same thing with replies to hijacked email threads. Employees were warned against opening the emails, regardless of who sent them, and were asked to immediately report the phishing emails to the IT department if they receive them.Įxample phishing email sent to IKEA employees. The company’s IT teams reportedly pointed out that the reply-chain emails contain links ending with seven digits. IKEA sent its employees an example phishing email, shown below, that was received in Microsoft Outlook. IKEA didn’t respond to Threatpost’s queries about whether the attack has been contained or if it’s still ongoing. The spokesperson said that the company’s “highest priority” is that “IKEA customers, co-workers and business partners feel certain that their data is secured and handled correctly.” “We continue to monitor to ensure that our internal defence mechanisms are sufficient,” the spokesperson said, adding that “Actions have been taken to prevent damages” and that “a full-scale investigation is ongoing.” It is therefore difficult to detect, for which we ask you to be extra cautious.” –IKEA internal email to employees.ġ13021 10:22 UPDATE: An IKEA spokesperson told Threatpost that the company “ the matter seriously.”Īs of Tuesday morning, the company hadn’t seen any evidence of its customers’ data, or business partners’ data, having been compromised. “This means that the attack can come via email from someone that you work with, from any external organisation, and as reply to an already ongoing conversation. Other IKEA organisations, suppliers, and business partners are compromised by the same attack and are further spreading malicious emails to persons in Inter IKEA. “There is an ongoing cyberattack that is targeting Inter IKEA mailboxes. The phishing emails were coming from internal IKEA email addresses, as well as from the systems compromised at the company’s suppliers and partners. As of Friday – as in, shopping-on-steroids Black Friday – retail titan IKEA was wrestling with a then-ongoing reply-chain email phishing attack in which attackers were malspamming replies to stolen email threads.īleepingComputer got a look at internal emails – one of which is replicated below – that warned employees of the attack, which was targeting the company’s internal email inboxes.