Gift cards new vector in CEO fraud January 29 saw the arrival of yet another interesting variant of the gift card phishing campaigns that have become more common this year (see below). Today's email demonstrates that bad guys are actively adapting and evolving their pitch into CEO fraud. There are couple interesting things going in this new gift card phish: The bad guys work to establish a credible pretext ("incentives" for staff) -- something they've been getting better at recently. They explicitly request confidentiality -- another tactic we've been seeing more of recently. They're getting really greedy -- $4000 total in gift cards, the largest request we've yet seen (most requests in these gift card phishing schemes range from $500-$2000). But there's something else very significant going on here, ... Read More