Attackers Up Their Game With Ultra-Realistic PDF Invoice Lures, HP Finds
HP, Friday, September 12th, 2025
Latest HP Threat Insights Report uncovers highly polished, faked PDF reader lures, showing how attackers are perfecting visual deception to exploit trust in everyday apps.
HP Inc. issued its latest Threat Insights Report, revealing how age-old living-off-the-land (LOTL) and phishing techniques are evolving to bypass traditional detection-based security tools. LOTL techniques - where attackers use legitimate tools and features built into a computer to carry out their attacks - have long been a staple of the threat actor toolkit. However, HP Threat Researchers now warn that the growing use of multiple, often uncommon, binaries in a single campaign is making it even harder to distinguish malicious versus legitimate activity.