Connect with us

Hi, what are you looking for?

Tech

Beware Scammers Now Hide Phishing Links Behind Images – Kaspersky Warns – Ravenewsonline

ONLINE SCAMMER

At the end of August, Kaspersky experts discovered a phishing campaign with an unusual attack vector – through an image.

This scam targeted organisations in the fields of online retail, distribution, transportation, and logistics.

The cyber attackers aimed to steal corporate email credentials from potential victims.

Read Also: Beware of Deepfakes in the AI Age, Warns Kaspersky

Within the phishing scheme, the cyber attackers send emails in English, allegedly on behalf of a South Korean company.

Pretending to be employees of this organisation, the cybercriminals email about sending instructions to their bank for transferring a payment.

They ask potential victims to check the details in the scanned document, which is added to the body of the letter.

According to the legend, this must be done quickly in order to receive payment as soon as possible.

“The image in these phishing emails is poorly visible – this is what the attackers are counting on.

“Even if a person does not expect an email, he may be interested in looking at the details. However, in reality, the image hides a phishing link.

If the users click on the scan, they will be redirected to a fake resource that mimics a file sharing service from Adobe.

Read Also: Kaspersky Report Shows 25% of Paris Open Wi-Fi Spots for Olympics Unsafe

There, they will be asked to enter the credentials for a corporate email account to gain access to the document.

However, this should never be done, otherwise this information will go to the cybercriminals,” comments Roman Dedenok, a cybersecurity expert at Kaspersky.

To avoid becoming a victim of such phishing attacks, Kaspersky recommends that users do not trust emails from unknown mailboxes, especially when it comes to confidential data, financial transactions and suspicious attachments, even if it visually looks like the email came from an organisation with a good reputation.

Read Also: Kaspersky Identifies Cyber Threats to SMEs in 2023

Kaspersky also recommends that companies install a reliable security solution that will automatically send such emails to spam, such as Kaspersky Secure Mail Gateway, and also regularly conduct cybersecurity training for employees, teaching them how to recognise social engineering techniques, for example, using the Kaspersky Automated Security Awareness Platform.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

ad

You May Also Like

Tech

Samsung Electronics has taken a bold step in enhancing user experience and inclusivity by introducing Hausa, Igbo, and Yoruba as official language options on...

Tech

National Identity Management Commission (NIMC) has announced a milestone achievement, with over 117 million Nigerians now enrolled for the National Identity Number (NIN) as...

News

MTN Media Innovation Program (MIP), a six-month fully-funded certificate fellowship designed for media professionals, is redefining journalism and content creation in Nigeria. Now in...

News

Arik Air in 2024, airlifted 2,239,176 passengers between January 1, 2024, to December 31, 2024, a report sourced from the Nigeria Civil Aviation Authority...