Phishing emails sent using hacked Chipotle Marketing account.


Customers were offered phishing lures and malicious links that went to credential harvesting sites following a breach of the restaurant’s email marketing service last month.

Between July 13 and July 16, 121 phishing emails were received from the hacked Chipotle Mailgun account. Two of the assaults used malicious voicemail message attachments, 14 impersonated USAA bank in order to acquire financial information, and the remaining 105 emails attempted to drive users to a faked Microsoft site in order to steal credentials.

Read More…