Introduction

A sophisticated phishing campaign has been identified [2], targeting individuals through text messages that impersonate Amazon and the United States Postal Service (USPS) to gather personal information [1] [3]. This campaign is linked to the threat actor known as Chenlun, also referred to as Sinkinto01.

Description

A sophisticated phishing campaign has been identified [2], targeting individuals through text messages that impersonate Amazon and the United States Postal Service (USPS) to gather personal information [1] [3]. This activity has been linked to the threat actor Chenlun [2], also known as Sinkinto01 [1] [3], who previously exploited USPS delivery alerts to deceive recipients into sharing sensitive information [2]. Recent research indicates that Chenlun has evolved its tactics [1] [3], employing redirect domains and subdomains with short life cycles on older apex-level domains, suggesting the use of a domain generation algorithm (DGA) for obfuscation [3]. The latest phishing messages [2], observed on October 18, 2024 [2], warn users of suspicious account activity and prompt them to verify their accounts via malicious links [2].

Conclusion

The impact of this phishing campaign is significant, as it poses a threat to personal data security. To mitigate these risks, individuals should remain vigilant, verify the authenticity of messages, and avoid clicking on suspicious links. Organizations like Amazon and USPS must continue to enhance their security measures and educate users about potential threats. Future implications include the need for ongoing research to understand and counteract evolving phishing tactics, ensuring the protection of sensitive information.

References

[1] [https://itnerd.blog/2024/10/29/](https://itnerd.blog/2024/10/29/)new-chenlun-sinkinto01-ttps-development-to-use-amazon-usps-lures-in-smishing-attacks/
[2] https://www.infosecurity-magazine.com/news/chenluns-phishing-tactics-target/
[3] https://itnerd.blog/2024/10/29/