BitDam Detects Three New Emerging Phishing Trends - August

August was a busy month for hackers as phishing threats continue their 2020 rise; BitDam offers a free scanner that detects phishing at first encounter. 

BitDam, through this new monthly series, today announced its detection of three new trends in phishing that gained momentum and traction in August.

 

New phishing evasion technique uses spoofed emails

  • BitDam’s researchers noticed a new evasion technique during the last two weeks of August which was seen repeatedly among a variety of BitDam customers – spoofing of the sender’s email so the “from” field is identical to the “to” field. The email content contains a malicious phishing link. As the victim received an email from their own email address, it is difficult to detect if this is malicious. Moreover, it makes it impossible to add this address to a blacklist.
  • Also noteworthy, these spoofing attacks bypassed Microsoft Office security, including Office ATP.

 

There were more than 5,000 Microsoft phishing attacks in August

  • During August, 18% of the phishing attacks detected by BitDam were impersonations of Microsoft. In total, BitDam saw more than 5,000 phishing attacks impersonating Microsoft during the past month. Microsoft was among the top brands that attackers used, along with PayPal, Facebook, eBay and Amazon.
  • There was a variety of fake login pages, all aiming to steal Microsoft user credentials. Some targeted O365 email users, and some targeted OneDrive, SharePoint or Outlook.
  • These attacks are typically sent via email to business users. Some also appear in shared files on cloud drives such as OneDrive and SharePoint.
  • Once the attackers have Microsoft user credentials, they then send malicious emails from the victim’s email address to their contacts or sell these credentials on the darkweb.

 

G Suite follows O365 in phishing attacks

  • Google recently launched new features making G Suite more attractive for business users. Attackers didn’t wait for long before they started leveraging these features and the growing number of business users in order to penetrate their accounts.
  • In the past few weeks we have seen an increasing number of phishing attacks that impersonate G Suite login webpages. BitDam detected 278 fake G Suite webpages in August.
  • The webpages look like G suite login pages and attempt to capture G suite user credentials.

“Phishing attacks are our customers’ main concern and at BitDam, we were not surprised that this type of hacking continued its upward trajectory in 2020,” said Liron Barak, CEO of BitDam. “As we’ve noted before, phishing attempts accelerated with the onset of COVID-19, are becoming increasingly sophisticated, and we expect this trend to continue. We’ve dedicated resources to providing solutions that keep our customers one step ahead of those bad actors that phish for profit and to cause chaos.”

BitDam offers a free phishing scanner that checks suspicious links with the press of a button. The scanner is available at https://bitdam.com/is-this-phishing/. BitDam ATP protects email, cloud drives and instant messaging platforms from advance threats including malware and phishing.

August was a busy month for hackers as phishing threats continue their 2020 rise; BitDam offers a free scanner that detects phishing at first encounter. 

BitDam, through this new monthly series, today announced its detection of three new trends in phishing that gained momentum and traction in August.

 

New phishing evasion technique uses spoofed emails

  • BitDam’s researchers noticed a new evasion technique during the last two weeks of August which was seen repeatedly among a variety of BitDam customers – spoofing of the sender’s email so the “from” field is identical to the “to” field. The email content contains a malicious phishing link. As the victim received an email from their own email address, it is difficult to detect if this is malicious. Moreover, it makes it impossible to add this address to a blacklist.
  • Also noteworthy, these spoofing attacks bypassed Microsoft Office security, including Office ATP.

 

There were more than 5,000 Microsoft phishing attacks in August

  • During August, 18% of the phishing attacks detected by BitDam were impersonations of Microsoft. In total, BitDam saw more than 5,000 phishing attacks impersonating Microsoft during the past month. Microsoft was among the top brands that attackers used, along with PayPal, Facebook, eBay and Amazon.
  • There was a variety of fake login pages, all aiming to steal Microsoft user credentials. Some targeted O365 email users, and some targeted OneDrive, SharePoint or Outlook.
  • These attacks are typically sent via email to business users. Some also appear in shared files on cloud drives such as OneDrive and SharePoint.
  • Once the attackers have Microsoft user credentials, they then send malicious emails from the victim’s email address to their contacts or sell these credentials on the darkweb.

 

G Suite follows O365 in phishing attacks

  • Google recently launched new features making G Suite more attractive for business users. Attackers didn’t wait for long before they started leveraging these features and the growing number of business users in order to penetrate their accounts.
  • In the past few weeks we have seen an increasing number of phishing attacks that impersonate G Suite login webpages. BitDam detected 278 fake G Suite webpages in August.
  • The webpages look like G suite login pages and attempt to capture G suite user credentials.

“Phishing attacks are our customers’ main concern and at BitDam, we were not surprised that this type of hacking continued its upward trajectory in 2020,” said Liron Barak, CEO of BitDam. “As we’ve noted before, phishing attempts accelerated with the onset of COVID-19, are becoming increasingly sophisticated, and we expect this trend to continue. We’ve dedicated resources to providing solutions that keep our customers one step ahead of those bad actors that phish for profit and to cause chaos.”

BitDam offers a free phishing scanner that checks suspicious links with the press of a button. The scanner is available at https://bitdam.com/is-this-phishing/. BitDam ATP protects email, cloud drives and instant messaging platforms from advance threats including malware and phishing.

- Video Talk -

Get into The Phisher's Mind

27 October, 10am EST

Schedule a Demo

Enter your email to get a free trial invitation