A new Phishing scam involving a VPN configuration email to trick Microsoft 365 users from giving their credentials away. This time scammers have found a creative way to trick people seeking online privacy, security and anonymity. The latest scam involves the prominent use of VPNs by remote workers. Scammers are sending relevant phishing emails in order to steal Microsoft 365 credentials.
The new scam was discovered by researchers at Abnormal Security. In their blog post, Abnormal Security mention that the attackers impersonate a notification email from the company’s IT support. The sender’s email address is spoofed, and the email contain a link to a new VPN configuration for home access. It turns out that the hyperlink actually directs the user to an Office 365 credential phishing site. Therefore, if people fall for this attack, then their credentials would be compromised.
However, there are ways to stop scams like this from succeeding. Here are two important things to take away to avoid yourself from falling into the trap.
- Activate Microsoft 365 Multi-factor authentication- By adding in Multi-authentication layers to your accounts means that scammers will not be able to steal your credentials.
- Educate users – Take time in teaching your employees on the red flags that a phishing email would contain, and educate them on cyber threats. Cyber security training programs help minimise the risk.
Therefore to help you out, we’ve listed out the red flags you need to look out for in order to avoid falling for the trap.
How to spot a Phish?
Here are the red flags you need to watch out for whenever you receive an email.
- From Field – Do I know the sender? Do I normally communicate with the sender? Is the email from a suspicious domain? If in doubt, don’t open it.
- Attachment – Were you expecting to receive an attachment? Do you normally receive attachments from the sender? What type of file is attached? If in doubt, don’t open the attachment.
- Subject Line – Does the subject line create a sense of urgency? Does the subject line match the email content?
- Use of Language – Do you have an account or association with the company? Does the email contain obvious spelling or grammatical errors?
- Hyperlinks – Is the test of the link the same as the destination? Does the link include incorrect spelling or modified version of a known URL? If in doubt, do not click on the link. Verify the link by calling the sender.
Siccura Cybershield
Siccura Cybershield is the most interactive Cyber security training awareness program. With a philosophy as simple as Test. Aware. Engage, we’ll help you:
- Test your employees and IT defences by playing the role of an attacker.
- Make your employees aware of the types of attacks such as Phishing, Vishing, Ransomware and more
- Engage your employees by sharpening their knowledge, and teaching them how to combat threats.
Through the training program, we’ll help you turn your employees into a Human Cybershield ready to defend your business.
9 Comments
nitroglycerin senza ricetta in Spagna - January 13, 2024
Fantastic website. Lots of useful information here.
I am sending it to a few buddies ans additionally sharing in delicious.
And naturally, thank you for your sweat!
Allen Dave - October 23, 2024
Hello, as a newbie to cryptocurrency trading, I lost a lot of money trying to navigate the market on my own, then in my search for a genuine and trusted trader/broker, i came across Trader Bernie Doran who guided and helped me retrieve my lost cryptocurrencies and I made so much profit up to the tune of $60,000. I made my first investment with $2,000 and got a ROI profit of $25,000 in less than 2 week. You can contact this expert trader Mr Bernie Doran via Gmail : BERNIEDORANSIGNALS@GMAIL.COM or WhatsApp + 1 424 285 0682 and be ready to share your experience, tell him I referred you
sex shop - January 16, 2024
We would like to thank you all over again for the wonderful
ideas you offered Janet when preparing her own post-graduate research as well as, most
importantly, for providing all of the ideas in one blog post.
In case we had been aware of your web-site a year ago, i’d have been rescued from the nonessential measures we were having
to take. Thank you very much. sex shop
Rastrear Celular - February 11, 2024
Existe alguma maneira de recuperar o histórico de chamadas excluídas? Aqueles que possuem backup na nuvem podem usar esses arquivos de backup para restaurar registros de chamadas de celular.
tlovertonet - April 28, 2024
Thank you for another informative website. Where else could I get that kind of information written in such a perfect way? I have a project that I am just now working on, and I have been on the look out for such information.
iPad Stands - May 24, 2024
With the advancement of technology and changing customer demands, iPad wall mount will continue to play an important role in the hotel industry. They not only enhance the customer experience but also optimize hotel operational efficiency.
tlover tonet - June 24, 2024
Along with every little thing that appears to be developing within this subject material, your perspectives are very exciting. However, I am sorry, but I can not subscribe to your entire suggestion, all be it refreshing none the less. It appears to us that your comments are actually not entirely justified and in reality you are generally your self not thoroughly convinced of your point. In any event I did take pleasure in examining it.
zoritoler imol - October 8, 2024
Thanks for some other wonderful article. Where else could anyone get that type of info in such a perfect approach of writing? I’ve a presentation subsequent week, and I’m at the search for such info.
jimmy smith - November 21, 2024
Investing online has been a main source of income, that’s why knowledge plays a very important role in humanity, you don’t need to over work yourself for money.All you need is the right information, and you could build your own wealth from the comfort of your home! Binary trading is dependent on timely signals, assets or controlled strategies which when mastered increases chance of winning up to 90%-100% with trading. It’s possible to earn $10,000 to $20,000 trading weekly-monthly in cryptocurrency(bitcoin) investment, just get in contact with Mr Bernie Doran my broker. I had almost given up on everything about binary trading and never getting my lost funds back, till i met with him, with his help and guidance now i have my lost funds back to my bank account, gained more profit and I can now trade successfully with his profitable strategies and signals! Reach out to him on Gmail ( BERNIEDORANSIGNALS@GMAIL.COM ) , or his WhatsApp : +1(424)285-0682 for inquiries