In today's world, we all try to do as much as we can to be secure while online. Most have learned the signs to try to spot phishing attempts: misspelled words, broken english, urgent requests etc. We even implement 2FA to help prove that someone is who they say they are when they are authenticating to a site. As we try to up our security game, the bad guys up their tactics too. Amnesty.org shared an interesting write up about phishing attacks that are bypassing 2FA. According to the article, there is a large phishing campaign that is that is targeting Gmail and Yahoo accounts.
The emails being sent are "proported" to be alerts you would see if someone logged in from another location. This is an example of one the emails being reported:
User awareness is really key, especially as the attacks get more sophisticated. If you look at the email above, it is from "Goolge" which isn't readily apparent at a quick glace. Getting users to think before they click is key, but how else would you detect something like this. Any ideas or suggestions for how to detect this, please send them in!
Dec 21st 2018
10 months ago