From tripwire.com
Digital attackers used spearphishing campaigns to target oil and gas companies with samples of the AgentTesla infostealer family.
In the first campaign spotted by Bitdefender, malicious actors sent out emails that appeared to originate from Egyptian state oil company Engineering for Petroleum and Process Industries (Enppi). Those emails invited recipients to submit a bid for materials and resources as part of an upcoming project. But when they downloaded a .ZIP archive that claimed to contain that list of materials and resources, recipients unknowingly infected their computers with AgentTesla.