Subj : FedEx and UPS phishing scams are becoming more widespread - here' To : All From : TechnologyDaily Date : Fri Jun 28 2024 17:30:05 FedEx and UPS phishing scams are becoming more widespread - here's what to know Date: Fri, 28 Jun 2024 16:19:00 +0000 Description: New scams are very difficult to detect, since the spelling and grammar is essentially flawless, experts warn. FULL STORY ====================================================================== Cybersecurity researchers from Abnormal security have warned of a new phishin g campaign in which the threat actors impersonated UPS and FedEx, and sought to steal peoples sensitive and payment data. This would be nothing out of the ordinary if the campaign didnt have an impressive level of impersonation, and if the emails being distributed werent especially convincing. In a detailed analysis posted on Abnormals blog, the company explained that on the surface, this phishing campaign doesnt differ much from what weve seen so far. The attackers impersonate the shipping companies, and tell their victims that they have a parcel either en-route or unable to be delivered. "Remarkable level of detail" The scammers then invite the victims, via a link in the email, to resolve the issue quickly - by sharing their personal and payment data, and in some cases - to even make small payments. Those that fall for the ruse have their information stolen, which the attackers can then either sell on the black market, or use for more disruptive attacks. Since this time around payment data is also being grabbed, chances are that hackers could try to empty the pockets of organizations around the world, as well. But this campaign is different, since the attackers really went the extra mile to convince their victims they were legitimate. Bogus shipping notifications of the past often contained minimal text, limited formatting, and little to no mimicked branding beyond perhaps a single logo, the researchers explained. These campaigns, on the other hand, include a remarkable level of detail and incorporate the impersonated carriers branding into not only the initial messages but also the multi-step phishing sites. Additionally, from a grammar, spelling, and syntax standpoint, the text of the emails is essentially flawless. Either the attackers tried really hard, or they found a new, particularly sophisticated phishing-as-a-service kits somewhere on the dark web. Time will tell. More from TechRadar Pro What is phishing and how dangerous is it? Here's a list of the best firewalls today These are the best endpoint protection tools right now ====================================================================== Link to news story: https://www.techradar.com/pro/security/fedex-and-ups-phishing-scams-are-becomi ng-more-widespread-heres-what-to-know --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .