Security News > 2020 > April > Skype Phishing Attack Targets Remote Workers’ Passwords
Remote workers are being warned of a new phishing campaign targeting their Skype passwords.
The phishing emails look "Eerily similar" to a legitimate Skype notification alert, according to a report released by Cofense on Thursday.
"The threat actor anticipates users will recognize this as just that, so they take action to view the notifications. Curiosity and the sense of urgency entice many users to click the 'Review' button without recognizing the obvious signs of a phishing attack."
The webpage impersonates a legitimate Skype login page, asking for victims' Skype credentials.
"With so many people working from home, remote work software like Skype, Slack, Zoom, and WebEx are starting to become popular themes of phishing lures," said Cofense researchers.
News URL
https://threatpost.com/skype-phishing-attack-targets-remote-workers-passwords/155068/
Related news
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- Microsoft Teams phishing attack alerts coming to everyone next month (source)
- How to Prevent Phishing Attacks with Multi-Factor Authentication (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Darktrace: 96% of Phishing Attacks in 2024 Exploited Trusted Domains Including SharePoint & Zoom Docs (source)
- Phishing attack hides JavaScript using invisible Unicode trick (source)
- FatalRAT Phishing Attacks Target APAC Industries Using Chinese Cloud Services (source)
- Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
- YouTube warns of AI-generated video of its CEO used in phishing attacks (source)