New Phishing Attack Uses Unique Method To Avoid Security. As you know, hackers are always looking for a new angle, and recently, they’ve found a pretty good one.
Image recognition software is becoming increasingly sophisticated. So if hackers who are using new phishing methods are copying a fake landing and login page designed to mirror a company, and they have to get it exactly right, including the background image, or most Anti-Virus (AV) software will see through the ruse.
To get around that, some smart hackers have taken to building two different landing pages; one for the AV software and one for the user.
The page designed for the phishing software uses the proper background image but with the colors inverted. Image recognition software looks primarily for shapes and not for colors, so this easily fools most AV software. If a site visitor were to see that page, however, they would instantly notice the flaw and become suspicious, so the site directs the user to a different version of the page with a proper image.
Recently, WMC Global’s research team noticed:
“Our team reviewed other campaigns deployed by this threat actor, discovering that the individual was using the same inversion technique on the newer Office 365 background.”
If you’re an Office 365 user, pay close attention to the URL of the page you’re navigating, which will improve your odds of accidentally giving your login credentials and fall for a phishing attack.
Naturally, Office 365 isn’t unique in this regard. You can bet that hackers worldwide are employing this phishing trick to gain login credentials all across the internet, so be vigilant when going to a landing page.
Kudos to the team at WMC Global for spotting the new trend for phishing attacks, and make sure your IT staff is aware of the possibility so they can be on high alert and work to protect your users.