Security News > 2020 > April > Skype Phishing Attack Targets Remote Workers’ Passwords
Remote workers are being warned of a new phishing campaign targeting their Skype passwords.
The phishing emails look "Eerily similar" to a legitimate Skype notification alert, according to a report released by Cofense on Thursday.
"The threat actor anticipates users will recognize this as just that, so they take action to view the notifications. Curiosity and the sense of urgency entice many users to click the 'Review' button without recognizing the obvious signs of a phishing attack."
The webpage impersonates a legitimate Skype login page, asking for victims' Skype credentials.
"With so many people working from home, remote work software like Skype, Slack, Zoom, and WebEx are starting to become popular themes of phishing lures," said Cofense researchers.
News URL
https://threatpost.com/skype-phishing-attack-targets-remote-workers-passwords/155068/
Related news
- Midnight Blizzard Escalates Spear-Phishing Attacks On Over 100 Organizations (source)
- Windows infected with backdoored Linux VMs in new phishing attacks (source)
- Phishing-as-a-Service "Rockstar 2FA" Targets Microsoft 365 Users with AiTM Attacks (source)
- GenAI makes phishing attacks more believable and cost-effective (source)
- CERT-UA Warns of Phishing Attacks Targeting Ukraine’s Defense and Security Force (source)
- Inside the incident: Uncovering an advanced phishing attack (source)
- Ongoing phishing attack abuses Google Calendar to bypass spam filters (source)