Hackers attack 12 Australian companies with education phishing scam

  • 📰 FinancialReview
  • ⏱ Reading Time:
  • 52 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 24%
  • Publisher: 90%

Belgique Nouvelles Nouvelles

Belgique Dernières Nouvelles,Belgique Actualités

Criminals looking for new ways to steal data have begun targeting trusted third-party providers such as online education companies.

Hackers have broken into at least 12 Australian companies using a sophisticated campaign that compromised an online education provider then impersonated it to gain access to other firms’ systems.

A phishing scam, which often comes in the form of an email, is designed to trick targets by imitating a legitimate company or service. Australian cybersecurity firm CyberCX, which discovered the phishing and impersonation campaign, found at least one hacker had been abusing the online learning platform since March 2021.Katherine Mansted, director of cyber intelligence and public policy at CyberCX, said hackers of all varieties, including criminal groups and nation states, had increasingly exploited trusted names, brands and individuals, particularly from Australia.

“This is an example where that trust is a known brand, and known organisation, [and] is being exploited by, likely, criminals, for their follow-up cybercrime activities.”In the scam, an email from a company’s compromised mailbox would be sent to the online education provider’s platform, where phishing infrastructure was hosted. It would then send out content impersonating the organisation, or pose as a secure file transfer portal.

 

Merci pour votre commentaire. Votre commentaire sera publié après examen.
Nous avons résumé cette actualité afin que vous puissiez la lire rapidement. Si l'actualité vous intéresse, vous pouvez lire le texte intégral ici. Lire la suite:

 /  🏆 2. in BE

Belgique Dernières Nouvelles, Belgique Actualités