Security News > 2020 > May > Phishing attack impersonates Amazon Web Services to steal user credentials
The emails spoof an automated notification from AWS to try to capture Amazon account credentials, according to Abnormal Security.
A blog post published Wednesday by security provider Abnormal Security describes how phishing attacks are taking advantage of Amazon Web Services to steal user credentials.
In this new phishing campaign, the attackers deploy an email that contains an automated notification allegedly from Amazon Web Services.
All the payload links take the user to AWS credential phishing websites.
Each of the phishing emails discovered have come from the same IP address hosted by a French VPN. "Employee credentials that can get to their cloud accounts are an easy way to get to the prized possessions of an organization," said CloudKnox Security CEO Balaji Parimi.
News URL
Related news
- New Phishing Attack Uses Clever Microsoft Office Trick to Deploy NetSupport RAT (source)
- Hackers Exploiting Popular Document Publishing Sites for Phishing Attacks (source)
- New StrelaStealer Phishing Attacks Hit Over 100 Organizations in E.U. and U.S. (source)
- Iran-Linked MuddyWater Deploys Atera for Surveillance in Phishing Attacks (source)
- Alert: New Phishing Attack Delivers Keylogger Disguised as Bank Payment Notice (source)
- Retail chain Hot Topic hit by new credential stuffing attacks (source)
- New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks (source)
- New HTTP/2 DoS attack can crash web servers with a single connection (source)
- TA547 Phishing Attack Hits German Firms with Rhadamanthys Stealer (source)
- Roku warns 576,000 accounts hacked in new credential stuffing attacks (source)