Initially targeting Zoom users; the phishing scam aims for Outlook and Office365 credentials. As the digital world deals with the added responsibility of hosting more and more meetings online, popular video conferencing apps like Zoom and Microsoft Teams have increasingly come under fire from cybercriminals.
An anti-phishing firm discovered that most of the malicious coronavirus emails were coming from the United States. COVID-19 phishing emails have been bombarding inboxes since the virus began to spread in December and January. Cybercriminals have tried to push all kinds of scams to the masses using coronavirus-related topics, headers and organizations to get people to open malicious emails, files, or links. Complaints about phishing attacks have tripled since the concerns about COVID-19 became widespread, according to the FBI's Internet Crime Complaint Center. Cybersecurity company INKY pored through the months of coronavirus-themed phishing emails and compiled a report on where most of them were coming from, finding that the majority of IP addresses found in email headers originated from the United States. Dave Baggett, CEO of INKY, acknowledged that these IP addresses might be easily spoofed by more skilled attackers but explained that there were a number of reasons most attackers would be in the US. "The majority of our users are American. Phishers prefer to target victims within their own geography because it's easier to research and impersonate since it's the same culture and language," he said in an email interview, adding that non-American attackers may also want to spoof a US origin to evade geographical filters.
Scammers have been sending out emails that impersonate the U.S. Federal Reserve and lure recipients with financial relief options through the Payment Protection Program.
Phishing scammers have started to impersonate President Trump and Vice President Mike Pence in emails that distribute malware or perform extortion scams.
A phishing campaign using Office 365 voicemail lures to trick them into visiting landing pages designed to steal their personal information or infect their computers with malware.
As the country grapples with the burgeoning coronavirus pandemic, cybersecurity experts are warning that employees working from home are increasingly being targeted by aggressive cybercriminals trying to capitalize on their unfamiliarity with remote work.
Three companies were on Tuesday selected as winners in a New York City competition designed to promote the development of affordable, cutting-edge cybersecurity tools for small businesses.
Fake websites, fake products and fake apps are ready and waiting to snag shoppers this holiday season, according to experts. “Every year at this time, email-based scams rise to a fever pitch,” Dave Baggett, co-founder and CEO of the anti-phishing startup INKY, told Fox News. One reason scams are so prolific is, Baggett said, bad guys keep churning out lots of fake web domains. For example, they might register a website with a URL such as “amazon-black-friday-deals,” then send out authentic-looking Amazon emails, he explained.