CAMPBELL, Calif.: Barracuda threat analysts have uncovered phishing attackers exploiting content creation and collaboration platforms widely used by schools, graphic designers and businesses. The findings are published in a new blogpost.
The content creation platforms have millions of users worldwide. The analysts found that attackers are sending out emails from these platforms, featuring legitimate-looking posts, designs, and documents, but with embedded phishing links.
People who click on the links are directed to fraudulent login pages or other deceptive sites intent on stealing sensitive information, such as login credentials and personal data. In one example seen by the analysts, the platform is used to host voicemail phishing links.
“The increase in phishing attacks leveraging trusted content creation and collaboration platforms highlights a shift in cybercriminal tactics towards the misuse of popular, reputable online communities to implement attacks, evade detection and exploit the confidence that people have in such platforms,” said Saravanan Govindarajan, Manager, Threat Analysis at Barracuda. “It is vital for individuals and organizations to remain vigilant and ensure they have robust security measures in place that can detect and adapt to evolving threats.”
The new research is the latest in a series of recent reports based on Barracuda detection data and threat intelligence, which show how the attackers behind email threats are refining their tools and techniques to increase their chances of success and avoid being spotted and blocked by advanced security tools.
Examples included attackers leveraging QR codes, popular webmail services, and URL shorteners, and attacks that attempt to exfiltrate potentially significant volumes of data via sophisticated infostealers.
To stay protected from such threats, Barracuda recommends that email recipients apply caution when invited to click on links in unsolicited emails, or in messages from unknown senders. Other potential red flags include suspicious calls to action, and unexpected or illogical landing sites from links they receive, such as a service that isn't provided by Microsoft asking for Microsoft logins.
Email protection solutions that feature multilayered, AI- and machine-learning-powered detection will help to prevent these types of attacks from reaching user inboxes.