Malicious actors – whether of the criminal, hacktivist, or nation state variety – will use any avenue possible to attack their intended targets. Some evil folks have turned to leveraging MailChimp as a means of spreading malware:
The “View Invoice” button leads to a .zip file, which, according to scans on malware analysis site Virus Total, is malicious.
Companies and websites sometimes outsource their newsletter distribution to another company, to handle the infrastructure and headaches of firing out tens or hundreds of thousands of emails at a time. In this case, that was MailChimp, according to another apparent email from Business News Australia.
“This morning our MailChimp subscriber database was hacked and a fake invoice (Inoice 00317) [sic] was sent to our list,” the email reads, according to a screenshot tweeted by Hunt.