Security News > 2021 > May > Exploiting common URL redirection methods to create effective phishing attacks
"Simple" can often be harder than "Complex." When thinking about the trickiest phishing campaigns and their components, URL redirection does not immediately come to mind as the part causing the trouble.
URL forwarding is one method that is often abused by cybercriminals to create multi-layered phishing attacks.
URL redirection is the process of forwarding web users from the originally requested URL to a completely different one.
URL redirection is so common and has become a part of our daily life online that phishers do not mind exploiting it for their own purposes.
When checking the file's page source code, we can see an encoded script that, once decoded, shows the phishing URL of the web page the recipient would be redirected to after milliseconds of delay.
In conclusion: do not underestimate URL redirection.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/cFTPr0chIQc/
Related news
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- Microsoft Teams phishing attack alerts coming to everyone next month (source)
- How to Prevent Phishing Attacks with Multi-Factor Authentication (source)
- Cloudflare outage caused by botched blocking of phishing URL (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Darktrace: 96% of Phishing Attacks in 2024 Exploited Trusted Domains Including SharePoint & Zoom Docs (source)
- Phishing attack hides JavaScript using invisible Unicode trick (source)
- FatalRAT Phishing Attacks Target APAC Industries Using Chinese Cloud Services (source)