Security News > 2022 > August > How phishing attacks are exploiting Amazon Web Services
How phishing attacks are exploiting Amazon Web Services.
Cybercriminals prefer to use legitimate sites and services in their phishing scams, not just to trick unsuspecting victims but to sneak past security scanners that would otherwise block traffic from a suspicious site.
In a report released Thursday, email security provider Avanan describes a new phishing campaign that takes advantage of Amazon Web Services.
How attackers are using AWS. In the scheme analyzed by Avanan, cybercriminals have been building phishing pages on AWS. By sending a link to such a page through a phishing email, the scammers are able to bypass security tools and convince the recipient to share credentials for sensitive accounts.
Impersonating Microsoft, complete with a Microsoft logo, the phishing email claims that the user's password will expire today and prompts them to click on a button to keep the same password.
As a prominent website and service, Amazon Web Services will always be on the Allow list, letting the phishing email reach the user's inbox.
News URL
https://www.techrepublic.com/article/how-phishing-attacks-are-exploiting-amazon-web-services/
Related news
- Windows NTLM hash leak flaw exploited in phishing attacks on governments (source)
- Three Reasons Why the Browser is Best for Stopping Phishing Attacks (source)
- Phishing detection is broken: Why most attacks feel like a zero day (source)
- DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack (source)
- Low-tech phishing attacks are gaining ground (source)
- MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks (source)
- Focused Phishing: Attack Targets Victims With Trusted Sites and Live Validation (source)
- CTM360 Identifies Surge in Phishing Attacks Targeting Meta Business Users (source)
- Polymorphic phishing attacks flood inboxes (source)
- How to Detect Phishing Attacks Faster: Tycoon2FA Example (source)