Security News > 2020 > April > Cisco ‘Critical Update’ Phishing Attack Steals Webex Credentials

An ongoing phishing campaign is reeling in victims with a recycled Cisco security advisory that warns of a critical vulnerability.
The campaign urges victims to "Update," only to steal their credentials for Cisco's Webex web conferencing platform instead. The campaign is looking to leverage the wave of remote workers who, in the midst of the coronavirus pandemic have come to rely on online conferencing tools like Webex.
The body of the email embeds content from a real Cisco Security Advisory from December 2016, along with Cisco Webex branding.
The email tells victims, "To fix this error, we recommend that you update the version of Cisco Meetings Desktop App for Windows" and points them to a "Join" button to learn more about the "Update."
Victims who click on the "Join" button are redirected to the phishing landing page, which is identical to the legitimate Cisco WebEx login page.
News URL
https://threatpost.com/cisco-critical-update-phishing-webex/154585/
Related news
- Cisco warns of Webex for BroadWorks flaw exposing credentials (source)
- Critical Cisco Smart Licensing Utility flaws now exploited in attacks (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
- How New AI Agents Will Transform Credential Stuffing Attacks (source)
- YouTube warns of AI-generated video of its CEO used in phishing attacks (source)
- Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials (source)
- CISA tags critical Ivanti EPM flaws as actively exploited in attacks (source)
- Critical PHP RCE vulnerability mass exploited in new attacks (source)
- Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)