Microsoft Phishing Attack Uses Google Redirects to Evade Detection

guest · Sep 26, 2019

Microsoft Phishing Attack Uses Google Redirects to Evade Detection
September 25, 2019
https://www.bleepingcomputer.com/ne...ack-uses-google-redirects-to-evade-detection/

A new phishing campaign uses Google search query redirects to send potential victims to a phishing landing page designed to collect Microsoft Office 365 credentials via encoded URLs.

The phishers behind these attacks use URL Encoding (also known as Percent Encoding), a technique that makes it possible to convert ASCII characters in URLs with % signs followed by two hexadecimal digits.
This allows the threat actors to hide the phishing page URL from secure email gateways (SEGs) that scan emails for malicious links and content to block potentially dangerous messages.

"The phishing email is simple and originates from a compromised email account of a relatively well-known American brand, informing recipients that they have a new invoice awaiting payment," found Cofense.
Click to expand...

Cofense: Threat Actors Use Percentage-Based URL Encoding to Bypass Email Gateways

Log in or Sign up

Microsoft Phishing Attack Uses Google Redirects to Evade Detection

guest Guest

Log in or Sign up

Microsoft Phishing Attack Uses Google Redirects to Evade Detection

guest Guest

Useful Searches