Phishing attacks continue to be a persistent threat. Recent developments highlight the use of innovative techniques by cybercriminals to bypass traditional security measures. Let’s explore these new tricks and how you can protect yourself.
Phishing campaigns are now leveraging Cloudflare Workers (A Cloudflare Worker is a serverless platform that lets developers run JavaScript functions as close to the end user as possible) to serve as reverse proxy servers. This tactic, known as Adversary-in-the-Middle (AitM) phishing, intercepts traffic between the victim and legitimate login pages, capturing credentials, cookies, and tokens. This method has targeted victims across various sectors, including technology and financial services. CyberHoot wrote about a particularly nasty attack called Evil-Proxy that follows a similar attack tactic.
HTML smuggling is another sophisticated technique gaining traction. It involves using malicious JavaScript to assemble phishing pages directly on the victim’s browser, evading security protections. This method has been used to create convincing fake login pages that steal users’ credentials and multi-factor authentication (MFA) codes.
The rise of Phishing-as-a-Service (PhaaS) toolkits like “Greatness” enables attackers to easily deploy phishing campaigns targeting Microsoft 365 users. These toolkits incorporate advanced features such as MFA bypass techniques, making phishing attacks more accessible and effective.
Generative AI (GenAI) is being employed by cybercriminals to craft convincing phishing emails. These AI-generated messages can bypass traditional filters and trick even the most cautious users. Additionally, oversized malware payloads, often exceeding 100 MB, are being used to evade antivirus scanning.
Domain name system (DNS) tunneling is another method being utilized to monitor victim interactions with phishing emails. By embedding malicious content in emails that perform DNS queries to attacker-controlled subdomains, cybercriminals can track victim engagement. Malvertising, or malicious advertising, is also on the rise, tricking users into downloading malware through deceptive ads.
Phishing attacks are becoming more sophisticated, more impactful, and more frequent. If you continue to learn and take proper security measures, you can stay one step ahead of cybercriminals.
Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.
Stop tricking employees. Start training them. Take Control of Your Security Awareness Training with a Platform...
Read moreA recent discovery by cybersecurity firm Oligo Security has unveiled a series of critical vulnerabilities in...
Read moreGet sharper eyes on human risks, with the positive approach that beats traditional phish testing.