Security News > 2020 > April > Phishers exploiting employees’ layoff, payroll concerns

Phishers exploiting employees’ layoff, payroll concerns
2020-04-23 10:44

A few days ago, we outlined several phishing campaigns going after Zoom and WebEx credentials of employees.

Two new ones are trying to exploit their fears by delivering fake "Zoom meeting about termination" emails and fake notifications about COVID-19 stimulation/payroll processing.

The provided link takes the victim to a spoofed Zoom login page hosted on zoom-emergency.

"The email looks and is formatted like a legitimate meeting reminder commonly used by Zoom. The landing page is also a carbon copy of the Zoom login page; except the only functionality on the phishing page are the login fields used to steal credentials. Recipients would be hard-pressed to understand that this was a site designed specifically to steal their credentials," the company notes.

The email contains a link to a fake payroll report hosted on Google Docs, which contains another link inside it.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/nC9zusFBGOw/