Cybercriminal group Fin7 has been launching cyber attacks in the United States and Europe for years. They have a history of targeting retail and service industry point of sale systems, with the DOJ reporting that they’ve stolen 15 million payment card records. They also have a long history of phishing attacks. Fin7 has used real certificates and made slight changes to malware code to pass anti virus software undetected.
A few members of the group faced indictment by the DOJ in 2018, but have remained persistent. Recently, Fin7 has been mailing USB devices along with a letter that appears to be from Best Buy to businesses. The letter includes a Best Buy gift card and states that the USB contains a catalog of items that can be purchased with the gift card. The USB drive comes pre-loaded with keystrokes, which open a PowerShell command to download and execute malware.
Be careful what you plug in to your computer!
https://www.bankinfosecurity.com/fbi-cybercrime-gang-mailing-badusb-devices-to-targets-a-14029
Cybersecurity Weekly 