New Phishing Campaign Targets European Businesses: How to Spot Fake Emails

A cybercrime group called TA4922, with links to China, has been running phishing email campaigns targeting organizations in the United Kingdom, Germany, Italy, and South Africa. Phishing means sending fake emails that try to trick people into clicking dangerous links or downloading harmful files. This group is using various types of malware, including ValleyRAT (also called Winos 4.0) and Atlas RAT (also called AtlasCross RAT). The group is operating quickly and constantly changing their attack methods. This campaign appears to focus on businesses and organizations rather than individual families. However, if you or someone in your household works for a company in these countries, you might receive suspicious emails at work. These emails could look like they come from trusted sources but actually contain malicious links or attachments. Anyone who works for a European organization or a company in South Africa should be extra careful with work emails right now.

Take these steps to protect yourself from phishing attacks.

1. Be suspicious of unexpected emails, even if they look official.
2. Never click links or download attachments from emails you were not expecting.
3. Verify requests by contacting the sender through a different method, like calling them directly.
4. If you receive a suspicious work email, report it to your IT department immediately.
5. Make sure your computer's antivirus software is up to date and running. Phishing remains one of the most common ways criminals break into systems. Teach everyone in your family to slow down before clicking. Criminals rely on people acting quickly without thinking. If an email creates urgency or pressure, that is often a red flag. Build a family habit of questioning unexpected messages, whether they arrive by email, text, or social media. Taking five seconds to verify can prevent hours of problems later.