1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Cybercriminals are scheduling fake meetings in people's calendars

    From TechnologyDaily@1337:1/100 to All on Fri Apr 1 12:45:04 2022
    Cybercriminals are scheduling fake meetings in people's calendars - here's why

    Date:
    Fri, 01 Apr 2022 11:21:25 +0000

    Description:
    Calendly is the latest in a string of legitimate services being abused for nefarious purposes.

    FULL STORY ======================================================================

    If you receive a calendar invite to view new fax documents, be careful - its most likely a phishing attack, attempting to obtain your identity and login credentials for your corporate accounts.

    The warning was given out by cybersecurity researchers from INKY which detailed the phishing campaign first detected toward the end of February
    2022.

    It all starts with a hijacked email account, which uses a compromised
    identity to send out a message containing an invitation to view newly
    received documents, via a link. Calendly hacked?

    On the surface, it is a Calendly calendar link. Calendly was most likely
    used, INKY believes, due to the fact that anyone can create a free account, without needing to enter their credit card details.

    Heres where the plot thickens. Calendlys invite pages are customizable. That allowed crooks to create a fake fax document notification, with all of the usual fax attributes (number of pages, or file size, for example), after
    which they used the Add Custom Link feature to insert a malicious link on the event page.

    Clicking on the preview document link takes the victim to the credential-harvesting page. In this particular example, the page is an impersonation of Microsoft. Hovering over the link shows where it really leads, though: https://dasigndesigns[.]com/ss/updation/index.html, a hijacked site, listed in Google, Firefox, and Netcraft threat feeds, INKY reminds.
    Read more

    What is phishing and how dangerous is it?


    Watch out - that PayPal email could be a phishing attack


    Google update looks to help you spot Workspace phishing scams

    Should the victim enter their login credentials here, they would end up with the attackers, while the victim would see an error message claiming an incorrect password was entered. After the second attempt, the victim would be redirected to their own domain, something the researchers described as a clever touch that minimizes suspicion.

    INKY, in this example, was redirected back to inky.com A solid endpoint protection services can keep you safe from phishing and other cyberattacks



    ======================================================================
    Link to news story: https://www.techradar.com/news/cybercriminals-are-scheduling-fake-meetings-in- peoples-calendars-heres-why/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)