About 10 days ago, a fellow vendor manager was hacked and the "message" we were getting actually had our own invoice info in the subject line.  There was a link which didn't make sense so we contacted the VM and sure enough, they had been hacked.  (Fortunately, we did an "all stop" immediately and never opened anything.)

This morning, I got a similar email from a CLIENT (a big one) which was responding to a string of legit emails.  But it said "all information needed is in the attached links."  Only the links were pointing to two different countries.....  

I suspect that this malware has spread throughout our industry now, via unsuspecting abstractors, vendor managers, and clients.  

CHECK CHECK AND RE-CHECK before you link to anything or open anything that doesn't quite make sense.  Call your client to make sure!

 Alix