URL protection services used to mask phishing attacks

No Comments

Cybercriminals are abusing legitimate URL protection services to hide malicious URLs in phishing emails, according to a new Threat Spotlight from Barracuda Networks.

Researchers have observed phishing attacks taking advantage of three different URL protection services to mask their phishing URLs. The services are provided by trusted, legitimate brands. To date, these attacks have targeted hundreds of companies.

URL protection services work by copying URL links found in emails, rewriting them, and then embedding the original within the rewritten one. When the email recipient clicks on the link, it triggers an email security scan of the original URL. If the scan is clear, the user is redirected to the URL. In the attacks seen, the users were redirected to phishing pages designed to steal sensitive information.

Barracuda researchers believe it's likely that the attackers initially gained entry to the URL protection services after compromising the accounts of legitimate users. Using a compromised account to send themselves a phishing email carrying their malicious link, the attackers would have been able to get the protection URL they needed for their phishing campaigns.

"This inventive tactic helps attackers to evade security detection, and the abuse of trusted, legitimate security brands means that recipients are more likely to feel safe and click on the malicious link," says Saravanan Mohankumar, manager, threat analyst at Barracuda. "The URL protection provider may not be able to validate whether the redirect URL is being used by a customer or by an intruder who has taken over the account. Phishing is a powerful and often successful threat, and cybercriminals will continue to evolve their tools and techniques to maintain this. Security teams need to be prepared."

Barracuda recommends a multilayered, AI-powered approach to defense, which can detect and block any unusual or unexpected activity, however complex. These security measures should be complemented by active and regular security awareness training on the latest threats and how to spot and report them.

You can read more on the Barracuda blog.

Image credit: Gorodenkoff/depositphotos.com

No Comments
Got News? Contact Us

Recent Headlines

Visible fires shots at Mint with $15 five-year rate guarantee for T-Mobile customers

Save $39.99! Get 'Cybersecurity Strategies and Best Practices' for FREE

Best Windows apps this week

File sharing phishing attacks increase 350 percent

The importance of API monitoring across the enterprise [Q&A]

Uber and Cruise shift gears with autonomous vehicle partnership

Ampace launches Andes 300: A portable power station designed for adventure

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Ubuntu-based Linux Mint 22

66 Comments

Forget Windows 11, the stunning Windows 10 2024 Edition is the operating system you want

33 Comments

10 shocking reasons Windows 10 outshines Windows 11

17 Comments

Microsoft releases the new Outlook for Windows for anyone who wants it, including commercial customers

15 Comments

Transform Microsoft Windows 11 into Windows 10

15 Comments

Microsoft is testing a change to the Windows 11 Start menu that you might actually like

13 Comments

Goodbye Windows 11, hello Linux: Discover how ExTiX Deepin 24.8 can free your computer from Microsoft

11 Comments

Forget Microsoft Windows 11, the Chinese-made deepin Linux 23 is the operating system you really want

10 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.