A phishing marketing campaign is impersonating HR to focus on workers who’re making annual insurance coverage adjustments in the course of the open enrollment interval, in keeping with researchers at Irregular Safety.
The attackers are utilizing professional notifications from Dropbox to ship phishing messages, asking recipients to view a doc on Dropbox relating to annual wage will increase and open enrollment elections.
If a person clicks the hyperlink, they’ll be taken to a Dropbox doc containing one other hyperlink that may redirect them to a spoofed Microsoft login web page designed to steal their credentials.
“Upon logging in, they will view the doc, which incorporates a mixture of impersonated Microsoft and Docusign branding to offer the appearance of legitimacy,” the researchers write.
“It additionally features a notice stating the file ‘accommodates delicate data that has been encrypted’ in an try to additional reinforce the pretext that the doc was actually despatched from the HR division. When the goal clicks on both ‘REVIEW DOCUMENT’ or ‘DOWNLOAD DOCUMENT,’ they’re redirected to a spoofed Microsoft OneDrive portal and prompted to supply their Microsoft login credentials.”
Since each the e-mail and the hyperlink come from Dropbox, the messages are unlikely to be flagged as malicious.
“As beforehand talked about, the preliminary e mail is indistinguishable from an genuine Dropbox notification as a result of every part about it’s professional—besides the intent behind it,” Irregular Safety explains. “Additional, not like the overwhelming majority of phishing assaults, the malicious hyperlink isn’t contained throughout the e mail.
It exists inside a separate doc hosted on a real file-hosting service, and it’s solely after the goal leaves the e-mail surroundings and engages with the shared file that they’re uncovered to the phishing hyperlink.”
New-school safety consciousness coaching may give your group a necessary layer of protection in opposition to social engineering assaults. KnowBe4 empowers your workforce to make smarter safety choices each day. Over 70,000 organizations worldwide belief the KnowBe4 platform to strengthen their safety tradition and scale back human threat.
Irregular Safety has the story.