1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Phishing scam focuses on the basics to harvest business credentials

Discussion in 'CSO' started by RSS, Jul 6, 2016.

  1. RSS

    RSS New Member Member

    Criminals are using basic CSS and HTML to scam victims out of their credentials, and in some cases, their phone numbers too. The Phishing campaign is driven by an easily customized kit that uses blurred images as a lure.

    The scam starts with an email prompting the victim to follow a link to view an invoice or purchase order. The emails themselves are cleanly coded, and use logos from legitimate organizations, such as HSBC.

    If the link is clicked, the victim is directed to a landing page that uses basic images to make it appear as if the documents are real, but require authentication to view. The kit uses low-resolution images to give the appearance of a blurring, with just enough detail to make it look legitimate.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page