Logo for The Security Title Guarantee Corporation of Baltimore

WEST issued an alert for industry members to be on the lookout for watering hole attacks after an escrow assistant became the victim of one.

It noted that recently an escrow assistant was searching online for a subordination agreement and thought they had found a link to the needed file type. The link took them to another site at a university, where they found the zip file and downloaded it.

“Unfortunately, the content of the zip file was not a PDF document; it was a script that attempted to contact a command-and-control server controlled by an attacker,” the alert stated. “The attacker’s intent was to infiltrate the network, steal information, and start a ransomware attack.”

The alert explained watering hole attacks trick users within a specific industry by infecting websites they typically visit or find in industry-related searches. It then lures them to a malicious site.

“However, the attacker is not targeting a specific victim; they use the watering hole to set their traps wide and then wait for any unsuspecting user to fall victim,” the alert stated.

“Watering hole attacks have not targeted real estate and settlement services in the past, but it seems they may now be on the attackers’ radar,” the alert continued. “Doing random searches for business-specific templates and then clicking a link to download them is an unnecessary risk and one that could affect not just you but your entire company as well. Follow procedures, use company documentation, and be alert and aware when doing searches online. Pay attention to where you’re going, what you may be clicking on, and where any links may take you.

If you subscribe to The Legal Description, you can see the article on their website.