BitDam Detects New Phishing Trends in November

BitDam Continues to Detect Microsoft as the Top Spoofed Brand in November  

Two click attacks and bank account phishing become more prevalent

 

BitDam, through this ongoing monthly series, today announced its detection of the leading phishing trends throughout November 2020, including the ongoing popularity of using falsified Microsoft branding in business phishing attacks.

November’s findings include:

 

Faking the Microsoft brand is still popular

  • Phishing attacks in the month of November continued to use branded Office365 login pages that targeted businesses.
  • BitDam continues to see an increase in the prevalence of these attacks.


Two Click attacks make the list

  • BitDam noted an increase in the prevalence of attacks that required two clicks from users. 
  • In this scheme, the user is required to click a link in the email, then arrives at a webpage that asks the user to click again in order to access the information. The user is then asked to enter credentials. 
  • In the image here, the user clicked the link in the email, which took them to quip.com. The user was asked to click another link in order to access the document and then asked to enter an O365 username and password.  
  • This technique helps these attacks bypass security solutions that scan the first link and approve it as benign. Only a human would click the next link and arrive to the phishing webpage. BitDam detects these attacks.


Bank account phishing is on the rise

  • In the past, bank account phishing initiatives have not targeted businesses to a great degree.  In November, fake bank webpages increased and BitDam saw this type of phishing attempt occur with its customer base. 
  • Popular brands to impersonate in this context were Wells Fargo and Chase. 

 

“As the holiday season approaches it is not surprising to see phishing attempts increase, especially with an eye to the financial sector,” said Liron Barak, CEO of BitDam. “We have seen an uptick in bank account phishing and now two click attacks make our monthly list.  We will continue to stay hyper vigilant for our customers and providing the necessary solutions to thwart these phishing attacks – at first encounter.  We’re happy to reveal our findings every month to keep the community aware of the changes as bad actors continue to try and take advantage of the unsuspecting.” 

BitDam offers a free phishing scanner that identifies phishing links with the press of a button. The scanner is available at https://bitdam.com/is-this-phishing/. BitDam ATP protects email, cloud drives and instant messaging platforms from advance threats including malware and phishing.

For more information about BitDam’s offerings please visit:  https://bitdam.com 

 

BitDam Continues to Detect Microsoft as the Top Spoofed Brand in November  

Two click attacks and bank account phishing become more prevalent

 

BitDam, through this ongoing monthly series, today announced its detection of the leading phishing trends throughout November 2020, including the ongoing popularity of using falsified Microsoft branding in business phishing attacks.

November’s findings include:

 

Faking the Microsoft brand is still popular

  • Phishing attacks in the month of November continued to use branded Office365 login pages that targeted businesses.
  • BitDam continues to see an increase in the prevalence of these attacks.


Two Click attacks make the list

  • BitDam noted an increase in the prevalence of attacks that required two clicks from users. 
  • In this scheme, the user is required to click a link in the email, then arrives at a webpage that asks the user to click again in order to access the information. The user is then asked to enter credentials. 
  • In the image here, the user clicked the link in the email, which took them to quip.com. The user was asked to click another link in order to access the document and then asked to enter an O365 username and password.  
  • This technique helps these attacks bypass security solutions that scan the first link and approve it as benign. Only a human would click the next link and arrive to the phishing webpage. BitDam detects these attacks.


Bank account phishing is on the rise

  • In the past, bank account phishing initiatives have not targeted businesses to a great degree.  In November, fake bank webpages increased and BitDam saw this type of phishing attempt occur with its customer base. 
  • Popular brands to impersonate in this context were Wells Fargo and Chase. 

 

“As the holiday season approaches it is not surprising to see phishing attempts increase, especially with an eye to the financial sector,” said Liron Barak, CEO of BitDam. “We have seen an uptick in bank account phishing and now two click attacks make our monthly list.  We will continue to stay hyper vigilant for our customers and providing the necessary solutions to thwart these phishing attacks – at first encounter.  We’re happy to reveal our findings every month to keep the community aware of the changes as bad actors continue to try and take advantage of the unsuspecting.” 

BitDam offers a free phishing scanner that identifies phishing links with the press of a button. The scanner is available at https://bitdam.com/is-this-phishing/. BitDam ATP protects email, cloud drives and instant messaging platforms from advance threats including malware and phishing.

For more information about BitDam’s offerings please visit:  https://bitdam.com 

 

Schedule a Demo

Enter your email to get a free trial invitation