Candid Technology reported:
The attack sequence begins with an innocuous-looking email, resembling a genuine Dropbox notification, prompting users to believe they have a document to review. Once users click on the email, they are redirected to what appears to be a legitimate Dropbox page, albeit with content resembling OneDrive. Unbeknownst to the users, this page is the entry point to the final stage — a credential-harvesting page hosted outside of Dropbox, where cybercriminals aim to pilfer sensitive login information.
The researchers believe that education has to become a necessary component to mitigate this spam. End-users must exercise caution by scrutinising email senders and the content they receive. They can also hover over the URLs within Dropbox pages and check the link’s content.
The researchers believe that education has to become a necessary component to mitigate this spam. End-users must exercise caution by scrutinising email senders and the content they receive. They can also hover over the URLs within Dropbox pages and check the link’s content.
Using advanced technologies like artificial intelligence to analyse and identify phishing indicators, deploying a foolproof URL protection system, and file scanning capabilities will help mitigate these scams.
Find the original article and read more here.
Enroll in Training Sessions: Last Thursday of Every Month is Training on Frauds and New Scam Alerts and How to Combat
Enroll in Training Sessions: Last Thursday of Every Month is Training on Frauds and New Scam Alerts and How to Combat