Security News > 2021 > May > Exploiting common URL redirection methods to create effective phishing attacks
"Simple" can often be harder than "Complex." When thinking about the trickiest phishing campaigns and their components, URL redirection does not immediately come to mind as the part causing the trouble.
URL forwarding is one method that is often abused by cybercriminals to create multi-layered phishing attacks.
URL redirection is the process of forwarding web users from the originally requested URL to a completely different one.
URL redirection is so common and has become a part of our daily life online that phishers do not mind exploiting it for their own purposes.
When checking the file's page source code, we can see an encoded script that, once decoded, shows the phishing URL of the web page the recipient would be redirected to after milliseconds of delay.
In conclusion: do not underestimate URL redirection.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/cFTPr0chIQc/
Related news
- European retailer Pepco loses €15.5 million in phishing (possibly BEC?) attack (source)
- Need to Know: Key Takeaways from the Latest Phishing Attacks (source)
- Vishing, smishing, and phishing attacks skyrocket 1,265% post-ChatGPT (source)
- Hackers target FCC, crypto firms in advanced Okta phishing attacks (source)
- Hackers steal Windows NTLM authentication hashes in phishing attacks (source)
- Flipper Zero WiFi phishing attack can unlock and steal Tesla cars (source)
- MiTM phishing attack can let attackers unlock and steal a Tesla (source)
- New Phishing Attack Uses Clever Microsoft Office Trick to Deploy NetSupport RAT (source)
- Hackers Exploiting Popular Document Publishing Sites for Phishing Attacks (source)
- New StrelaStealer Phishing Attacks Hit Over 100 Organizations in E.U. and U.S. (source)