Security News > 2021 > May > Exploiting common URL redirection methods to create effective phishing attacks
"Simple" can often be harder than "Complex." When thinking about the trickiest phishing campaigns and their components, URL redirection does not immediately come to mind as the part causing the trouble.
URL forwarding is one method that is often abused by cybercriminals to create multi-layered phishing attacks.
URL redirection is the process of forwarding web users from the originally requested URL to a completely different one.
URL redirection is so common and has become a part of our daily life online that phishers do not mind exploiting it for their own purposes.
When checking the file's page source code, we can see an encoded script that, once decoded, shows the phishing URL of the web page the recipient would be redirected to after milliseconds of delay.
In conclusion: do not underestimate URL redirection.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/cFTPr0chIQc/
Related news
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Darktrace: 96% of Phishing Attacks in 2024 Exploited Trusted Domains Including SharePoint & Zoom Docs (source)
- Phishing attack hides JavaScript using invisible Unicode trick (source)
- FatalRAT Phishing Attacks Target APAC Industries Using Chinese Cloud Services (source)
- Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
- YouTube warns of AI-generated video of its CEO used in phishing attacks (source)
- Ukrainian military targeted in new Signal spear-phishing attacks (source)
- Phishing platform 'Lucid' behind wave of iOS, Android SMS attacks (source)