Security News > 2022 > October > Credential phishing attacks continue to exploit COVID-19 to target businesses
Credential phishing attacks continue to exploit COVID-19 to target businesses.
Since early 2020, the coronavirus pandemic has given cyber criminals another area that's ripe for exploitation as they try to trick individuals and businesses into divulging sensitive information.
In a report published Wednesday, Oct. 11, email security provider Inky discusses a recent phishing campaign that takes advantage of COVID-19 in an attempt to steal financial account details from business users.
Promising grant money to all businesses and organizations, with no need to pay it back, the phishing email includes an "Apply Now" button that takes users to a survey form that must be filled out to determine if they're eligible for the grant.
Using Google Forms to create and host the survey is a clever method as this is a free tool trusted by businesses and one that's likely to avoid security detection.
Also See Share: Credential phishing attacks continue to exploit COVID-19 to target businesses.
News URL
https://www.techrepublic.com/article/credential-phishing-targets-businesses/
Related news
- Clone2Leak attacks exploit Git flaws to steal credentials (source)
- Malware botnets exploit outdated D-Link routers in recent attacks (source)
- New DoubleClickjacking attack exploits double-clicks to hijack accounts (source)
- Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks (source)
- New Web3 attack exploits transaction simulations to steal crypto (source)
- Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- Microsoft Teams phishing attack alerts coming to everyone next month (source)
- New SLAP & FLOP Attacks Expose Apple M-Series Chips to Speculative Execution Exploits (source)
- New Aquabot Botnet Exploits CVE-2024-41710 in Mitel Phones for DDoS Attacks (source)