Greed is good... for this phishing scam
.jpg)
Cofense has come across a particularly seductive phishing scam that uses the lure of a wage increase to entice workers to spill their Microsoft Office 365 credentials.
The spoofed email differs little from other varieties used in phishing attacks, except this one purportedly comes from a corporate human resources department regarding a company-wide pay hike to which the intended victim is entitled, wrote Milo Salvia, of the Cofense Phishing Defense Center.
"It is not uncommon, of course, for companies to increase salaries throughout the year. As a result, it wouldn’t be uncommon for an email like this to appear in an employee’s mailbox. Human curiosity compels users to click the embedded link," he wrote.
The primary slight of hand being displayed is convincing recipients that they are being linked to a Sharepoint document when it fact they are being redirected to an external URL. Once on the malicious website, the target is presented with a fake Office 365 login page. Here the person’s email address is pinned to the username area so only the password needs to be inserted. This mimics many auto-populate templates.
At this point the attacker has accomplished his goal and now has access to that company’s Office 365 account.
source scmagazineuk
Industry: Cyber Security
Latest Jobs
-
- CONTRACT SIEM Cyber Security Operations Engineer. REMOTE OUTSIDE IR35
- United Kingdom
- £500
-
REFCH8165 CONTRACT SIEM Cyber Security Operations Engineer. REMOTE UK SIEM Engineer. 6 month Contract. OUTSIDE IR35 Working towards a "SOC 2" environment. CLOUD (AWS) experience essential. Three key functions; Monitor, Escalate and Triage incidents. Vulnerability Management / threat intel. SIEM configuration / management, review, enhancement More specifically; Work with internal teams to identify assets. Identity applicable threat feeds and work with internal teams to remediate. Patch Patch Patch. (Help mature process / identify gaps) Configuration / fine tuning of SIEM alerts. Create dashboards, Compliance reporting. Log ingestion. Experience across ISO27001 / SOC2 / SIEM / End Point Security is essential Contact me today for more information Chris.Holt@dclsearch.com Or 07884666351
-
- Cyber Security Operations Engineer. REMOTE UK. SOC2
- United Kingdom
- £65000
-
REF8164 Cyber Security Operations Engineer. REMOTE UK Internal opportunity. New position. Exclusive to DCL Search. You will be the hands on technical eyes and ears of the Cyber security capability actively working to ensure and enhance the adherence to ISO27001 and "SOC 2" controls. You role will touch on the following · Security Monitoring- SIEM · Vulnerability Management / Testing · Incident Management · Asset management · Disaster Recovery planning · Change Management AWS Cloud experience is essential as is the ability to ensure patch management is prioritised across the business. Any CLOUD SIEM experience highly desirable. Contact me today for more information Chris.Holt@dclsearch.com Or 07884666351
-
- Lead Security Architect
- United Kingdom
- 100,000
-
Engage with key clients in an Architectural / technical presales capacity. Including Stakeholders, end users / partners. Working on new and existing Security projects to confirm that proposed solutions are fit for purpose from both a technical and regulatory capacity. Working closely with multiple vendor . Managed security service background ideal CLOUD Security (AZURE OR AWS), IDAM background ideal.
-
- Threat Vulnerability Management Analyst
- United Kingdom
- 45000
-
To monitor, identify and alert internal teams of cyber threats and vulnerabilities. MIRE Att&ck, CIS, OWASP, Vulnerability management tools MUST be able to commute to central London MUST be able to achieve UK SC Clearance. On going support and development.