Subj : Criminals are using this stupidly simple tactic to send malicious To : All From : TechnologyDaily Date : Mon Jun 05 2023 14:15:03 Criminals are using this stupidly simple tactic to send malicious links - and it's working Date: Mon, 05 Jun 2023 13:00:29 +0000 Description: Hackers are bypassing URL filters with images and are successfully reaching people's inboxes. FULL STORY ====================================================================== Criminals are using a stupidly simple tactic to direct victims to phishing links and its working. Usually, hackers would draft this elaborate email trying to convince the victims to click on a link found at the bottom of the message. These emails would either tell the recipients they urgently needed to download an antivirus or cancel a pending transaction that will leave them broke, or something similar. However, cybersecurity researchers from Check Point Harmony Email recently uncovered that some hackers are replacing all of that with a simple image. Instead of typing out a long email and risking being found out by typos or bad grammar, these attackers simply generate a promotional image - a flyer informing the recipients theyve won a prize or are invited to participate in a some kind of competition. Obvious scam The picture would then be hyperlinked and would direct the victims to a phishing page where theyd give away sensitive information. Sometimes its just an email address, and sometimes its passwords, personally identifiable data that can be used in identity theft, and more. Recipients with a keen eye would be able to quickly see through the fraud: all it takes is a hover of the mouse over the image for the hyperlink to appear. These links have nothing to do with the brands impersonated in the images, which is a clear red flag that a scam is afoot. Read more > Some of Google's new domain names could pose a serious security risk > These dangerous phishing attacks are more common than ever - here's what you need to know > Here's our list of the best malware removal software However, the researchers are saying the trick is working and that many people - instead of deleting the phishing email - end up clicking the image and falling prey to the attackers. Furthermore, by not displaying a link at all, hackers are succeeding in bypassing URL filters, one of the more popular methods of safeguarding inboxes. To defend against such attacks, the researchers say IT teams should implement security that looks at all URLs and emulates the page behind it. They should also leverage URL protection that uses phishing techniques as an indicator of an attack, and deploy AI-based anti-phishing software capable of blocking such content across the entirety of the productivity suite. These are the best firewalls to keep your business protected ====================================================================== Link to news story: https://www.techradar.com/news/criminals-are-using-this-stupidly-simple-tactic -to-send-malicious-links-and-its-working --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .