P
LEASE READ THIS COMMUNICATION CAREFULLY AND CONSULT WITH YOUR INFORMATION SECURITY TEAM IF NEEDED FOR IMMEDIATE ACTION.
We are writing to inform you that you may have received an electronic communication (email) purporting to come from AES, but that contained a link with a path to a credential harvesting website.
While we are still investigating this incident, our preliminary analysis indicates that on 07/30/2020 you may have received an email from the AES.com domain that could lead to the compromise of your username and password. The email from the AES.com domain purports to be a legitimate electronic communications from AES, and asks the recipient to open a document and click on a link to a malicious website. The threat actor uses compromised credentials to send credential harvesting phish emails using the victim’s address book.
The malicious email has the following common characteristics:
- Date: July 30th, 2020
- Sender email domain: aes.com
- Subject line: John W Horstmann is inviting you to collaborate on John W Horstmann
Consult with your information security team if needed for further action.
If you have any questions concerning this communication, please contact:
[email protected]
We deeply apologize for any concern this may cause you.
Sincerely,
AES Global Cybersecurity
