Hackers attack 12 Australian companies with education phishing scam

  • 📰 FinancialReview
  • ⏱ Reading Time:
  • 52 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 24%
  • Publisher: 90%

Business News News

Business Business Latest News,Business Business Headlines

Criminals looking for new ways to steal data have begun targeting trusted third-party providers such as online education companies.

Hackers have broken into at least 12 Australian companies using a sophisticated campaign that compromised an online education provider then impersonated it to gain access to other firms’ systems.

A phishing scam, which often comes in the form of an email, is designed to trick targets by imitating a legitimate company or service. Australian cybersecurity firm CyberCX, which discovered the phishing and impersonation campaign, found at least one hacker had been abusing the online learning platform since March 2021.Katherine Mansted, director of cyber intelligence and public policy at CyberCX, said hackers of all varieties, including criminal groups and nation states, had increasingly exploited trusted names, brands and individuals, particularly from Australia.

“This is an example where that trust is a known brand, and known organisation, [and] is being exploited by, likely, criminals, for their follow-up cybercrime activities.”In the scam, an email from a company’s compromised mailbox would be sent to the online education provider’s platform, where phishing infrastructure was hosted. It would then send out content impersonating the organisation, or pose as a secure file transfer portal.

 

Thank you for your comment. Your comment will be published after being reviewed.
Please try again later.
We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

 /  🏆 2. in BUSİNESS

Business Business Latest News, Business Business Headlines