Davey Winder is a technology journalist who covers cybersecurity news and research. He’s covered everything from the true story behind the hacking of Donald Trump’s nude photos to a record-breaking ransomware payment of $75 million.
Update, Nov. 19, 2024: This story, originally published Nov. 17 now includes new reports of other tactics that are increasingly being used by threat actors in phishing cyber attack s.
Because Visio is a commonly used tool employed in the workplace to help visualize complex data or workflows, the use of .vsdx format files fits nicely into the threat actor strategy of “harmless familiarity” being at the heart of many a phishing attack. Now, the Perception Point researchers said, the exact same files are being weaponized in the delivery of malicious URLs as part of a two-step phishing attack scenario: drop the lure, set the trap.
The victim is now redirected to another fake page, this time one that looks for all intents and purposes to be a Microsoft 365 portal login page which is designed, of course, to steal user credentials. There is no mention in the Perception Point report of this step including atactic, which means that one way to stop it from being successful would be to have robust two-factor authentication in place for the account that is being targeted in such cyber attacks.
Internal Fraud: A significant threat from within, internal fraud involves fraudulent actions by employees, including document falsification, embezzlement, and theft.
Two-Factor Authentication Two Step Phishing Two Step Attack 2SP Perception Point Security Warning Cyber Attack Visio Microsoft Security Warning
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
EUR/USD Price Forecast: Down, down, down you goEUR/USD faced renewed selling pressure early this week, building on losses from Friday and plunging to new yearly lows in the sub-1.0600 region on Tuesday.
Read more »
Don’t Hold Down The Ctrl Key—New Warning As Cyber Attacks ConfirmedDavey Winder is a technology journalist who covers cybersecurity news and research. He’s covered everything from the true story behind the hacking of Donald Trump’s nude photos to a record-breaking ransomware payment of $75 million.
Read more »
As sports betting addiction takes hold in Brazil, the government moves to crack downThe story of “King,” who doesn't disclose his real name, is similar to that of many vulnerable Brazilians in recent years. The country has become the third-biggest market in the world for sports betting, following the U.S. and the U.K. But unlike those countries, rampant advertising and sponsorship have been coupled with an unregulated market.
Read more »
Best of the West rankings: Colorado and UNLV rise after road wins, ASU and USC fall after road losses as top-three unchangedThe undefeated Ducks hold down the No. 1 position, followed by Brigham Young and Boise State.
Read more »
Seattle Seahawks offense finding itself in historically long 3rd down situationsGeno Smith gets the ball on 3rd down looking at a tiny, distant first down marker.
Read more »
The 9 Best Comforters of 2024, Tested and ApprovedGet expert-approved recommendations for the best comforters from top brands. Pros break down key differences between down, down alternative, and more.
Read more »