Back to All Attacks
Attack Details
Attack Date:
Apr 8, 2022

Caliber Home Loans Secure Message Credential Phishing Attack

Initial Email Content

Subject
Closing Docs: CTC/Final Buyer Statement (Wire Figures)
Body

New secure email message from Caliber Home Loans

Open Message

To view the secure message, click Open Message.

The secure message expires on April 11, 2022 @ 06:28 PM (GMT).

Do not reply to this notification message; this message was auto-generated by the sender's security system. To reply to the sender, click Open Message.

If clicking Open Message does not work, copy and paste the link below into your Internet browser address bar.
https://brhcustom.com/File-CD465783/

Want to send and receive your secure messages transparently?
Click here to learn more.

Attack Screenshots

No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This link-based attack impersonates Caliber Home Loans using email spoofing and a secure message theme to steal credentials.

Analysis Overview

Tactic
Spoofed Email Address
Goal
Credential Theft
Impersonated Party
Vector
Link-based
Theme
Secure Message
Real Estate Transaction
Language