Scammers tried to defraud computer equipment suppliers by sending a phishing email allegedly coming from the Texas Department of Health (DSHS). In particular, the scammers created a seemingly reliable email, which contained information that could be easily found through a brief search on Google.
In particular, in the phishing email sent to the sales department of a company, the fraudsters demanded a price offer for 20 laptops with touch screen and 200 portable hard drives. According to BleepingComputer, the sender's email "faked" John William Hellerstedt, who has been Texas Deputy Health Commissioner since January 2016, and appeared to be from the legal domain of the Ministry, according to Abnormal Security, One company which provides email protection.
However, the scammers reported a different email address in the field "response to", from a domain that is supposed to belong to New York City and was registered two months ago.
As you can see in the fake document below, the scammers do not reveal the address shipping, while giving the recipient 30 days to respond to the invitation to tender.
In addition to the sender's seemingly legitimate email address, its wording message and the request for document reporting, the fraudsters also gave a number phone referring the candidates victims in the Texas Department of Health, as this appears as the first result in Google search.
According to Abnormal Security, the purpose of the email sent by the scammers was to deceive the supplier, urging him to send the products to an address chosen by them. In particular, the company pointed out that the target of the attackers was to acquire goods and later to profit from the resale of the stolen goods. Also, the company's investigators emphasize that the fraudsters were very careful to cover their tracks, while using a service VPN to hide their location and real IP address when sending misleading email to their targets.