Security News > 2020 > June > Credential phishing attack impersonates Bank of America
![Credential phishing attack impersonates Bank of America](/static/build/img/news/alt/DDoS-medium.jpg)
The phishing email leads recipients to a phony BOA landing page in an attempt to steal their banking credentials, according to Armorblox.
A blog post published Thursday by security provider Armorblox explains how a recent phishing campaign impersonates Bank of America.
In this attack, which hit the inbox of an Armorblox customer, the recipient receives an email that claims to come from Bank of America with a request and link to update their email address.
Clicking on the link takes the user to a credential phishing page built to resemble the Bank of America home page.
Though the sender's name of Bank of America was spoofed, the email was sent from a personal Yahoo Mail account via SendGrid.
News URL
Related news
- New V3B phishing kit targets customers of 54 European banks (source)
- More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack (source)
- New phishing toolkit uses PWAs to steal login credentials (source)
- Guide to mitigating credential stuffing attacks (source)
- PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing (source)