Top Attack Vectors: February 2022>
Expel Blog – Hiranya Mir, Simon Wong and Britton Manahan
Phishing Valid Credentials Removable Media Macro Enabled Microsoft Office Documents TL;DR: We observed AsyncRAT malware used as a payload in several incidents this month.

TL;DR: We saw an increase in credential harvesters using Adobe services and cryptocurrency scam emails in February 2022.

We noticed an increase in the number of emails using legitimate Adobe domains. Since the surge in popularity of cryptocurrency, weâve observed an influx of new phishing tactics as threat actors try to take advantage of the anonymity of cryptocurrency transactions to keep themselves from being traced.
Link: https://expel.com/blog/top-attack-vectors-february-2022/