News and Updates on Information Technology

IKEA is struggling with an alleged reply-chain phishing assault that objectives inner mailboxes, and the emails

Exploit: Phishing

IKEA:  Furniture & Home Goods Retailer

cybersecurity news represented by agauge showing severe risk

Risk to Business: 1.595 = Extreme

IKEA is battling a nasty phishing attack on its employee email accounts that is using reply chains to try to trick employees. A reply-chain email attack is a type of spoofing in which the bad guys steal legitimate corporate email messages and send links to malicious documents to the chain as a reply. The messages seem legit and can be hard to catch. Malicious messages are being sent from inside the main IKEA organization as well as from other compromised IKEA organizations and business partners. The fight is ongoing and no direct cause has been announced, although analysts are saying that signs point to a Microsoft Exchange on-premises server compromise.

Individual Impact: No consumer or employee PII or financial data exposure was disclosed in this incident as of press time.

Customers Impacted: Unknown

How it Could Affect Your Customers’ Business Phishing is the top risk for a data breach in organizations of any size and has been for the last 3 years.

Source: Msspalert