Enhanced Endpoint Protection: FedEx Invoice Variation

Endpoint Protection Requires More than Just Anti-Virus

Binary Defense’s Vision Platform recently detected a new variant of the FedEx invoicing phishing campaign widely used for mass email campaigns. The FedEx campaigns are nothing new and have been around forever. Variants spawn quite frequently, but the techniques are continiously changing. Anytime you can elicit users for action on possible disruption of services (such as FedEx invoices, or missing packages), the success rate jumps up and is still effective today.

Since Vision works differently than other malware detection programs by focusing primarily on behavioral analysis to detect suspicious/abnormal patterns, it was successful in identifying this new variant. At the time, most anti-virus product lines were unable to detect this malicious code. 

read more →