N12 News Phishing Campaign Targets Israeli Users
A new phishing campaign is actively impersonating N12 News, a prominent Israeli news organization. Cyber News - Erez Dasa reports that these malicious campaigns are attempting to lure users into joining fraudulent groups, falsely claiming affiliation with N12 or News 12.
The objective of these campaigns is clear: credential harvesting or malware distribution. By leveraging the trusted brand of a major news outlet, attackers increase their chances of success, preying on usersβ desire for timely information. Cyber News - Erez Dasa emphasizes that these groups have no legitimate connection to N12 News, and users should avoid joining them.
N12 News has already informed the Israel National Cyber Directorate about this ongoing threat. Defenders should be actively educating their users about this specific campaign and the broader risks of phishing, especially those impersonating trusted local brands.
What This Means For You
- If your organization's users receive suspicious messages or links claiming to be from N12 News, instruct them not to click or join. Reinforce awareness about identifying phishing attempts, particularly those using local, trusted brands. This is a direct social engineering play; user education is your primary defense.
π‘οΈ Detection Rules
3 rules Β· 6 SIEM formats3 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free β export to any SIEM format via the Intel Bot.
N12 News Phishing Campaign - Malicious Link Access
Written by SCW Threat Desk