August 25, 2020 -A newIRONSCALESreportfound a drastic increase in successful credential theft attempts sent through spoofed login pages and social engineering attacksduring the first half of 2020. And themost common recipients targeted with these attacks were those in the healthcare sector.
Researchers identified and analyzed fake login pages sent during the first half of the year, which are commonly used in support of spear-phishing campaigns and other hacks. Intotal, they identified more than 50,000 fake login pages, which spoofed login pages from over 200 prominent global brands.
Outside of healthcare, other leading recipients were those in financial services, government agencies, and technology industries.
The growing cyber threat of fake login pages [are] nefarious, yet often highly realistic looking pages [and] now a common tactic deployedby attackers seeking to obtain a persons login credentials to a legitimate website, such as a bank, email client, or social media site, among many other popular services, researchers explained.
The operation, commonly known as credential theft, is simple: target unsuspecting recipients with an email spoofing a trusted brand and persuade them via social engineering to insert their legitimate credentials, such asa username and password, into a fake login page either embedded within the body of an email or built into a phishing website, they added.
Once the victim has inputted their credentials, the hacker harvests the data to loginto real accounts and commence further illegal activities.
Just thisweek, the FBI and the Department of Homeland Security warned hackers were using voice phishing, or vishing, campaigns to build trust with victims, later duping them into logging intomaliciouswebsites made to appear astheir employers webpages.
Previous campaigns have spoofedZoom,Google,and MicrosoftOffice 365executive accounts, among others.
The IRONSCALES report found the top five brands with the most fake login pages are nearly identical to those that frequently have the most active phishing websites.
PayPal was the leading brand with 11,000 fake login pages, or 22 percent, closely followed by Microsoft with 9,500, or 19 percent and Facebook with 7,500, or 15 percent.eBaywas listed in fourth with 3,000pages, or 6 percent, with Amazon in last, with 1,500 pages, or 3 percent.
Other top brands with spoofed login pages included Aetna, Wells Fargo, Adobe, Apple, Tesco, and JP Morgan Chase, along with a host of others.
Although PayPal sits atop the list, the greatest risk may derive from the 9,500 Microsoft spoofs, as malicious Office 365, SharePoint and One Drive login pages put not just people but entire businesses a risk, researchers warned.
The researchers said its believed fake login pages are successful for two reasons. To start,malicious phishing emails containing spoofed logins often bypass technical controls like secure email gateways andSPAM filters, without requiring much investment in time, funds, or resources by the hacker.
Secondly, the attack's success may be due towhat is known as inattentional blindness or when an individual does not perceive the unexpected change hiding in plain sight.
Inattentional blindness became an internet sensation in 2012 when a video posted asking viewers how many white shirted players passed a ball. Intently focused on the task at hand, more than 50 percent of the viewers failed to recognize a woman in a gorilla suit in the middle of the picture, researchers wrote. Even people with phishing awareness training are susceptible to inattentional blindness.
Notably, about 5 percent of these attacks leveraging fake login pages were polymorphic in nature, where a hacker implements light but significant and often random change to an emails artifacts, such as its content, copy, subject line, sender name or template in conjunction with or after an initial attack has deployed.
An earlier IRONSCALES report showed 42percentof phishing attacks are polymorphic.The technique allows for the quick development of phishing attacks able to dupe signature-based email security tools that arent designed to recognize the modifications. As a result, a targeted victim could receive different versions of the same attack in their email account without being detected.
About 24 percent of the attacks spoofing Microsoft were polymorphic, with 314 permutations, followed by Facebook with 13 percent of permutation attacks or 160 permutations in total.
While we cannot say for certain why these brands have more permutations than others, we can make an educated guess that this occurred for one of two reasons:The security teams associated with these brands are actively looking to take down fake login pages, so attackers are forced to more frequently evolve the attack ever so slightly so to defeat human and technical controls, researchers mused.
These brands are a priority and or easy target for a certain hacking group(s), so there is more activity and therefore a need to constantly evolve in order to stay one step ahead of security teams, they added.
Microsoft has previously shared spear-phishing insights, which may help healthcare organizations better understand how these attacks work and mitigation techniques to harden enterprisedefenses.
Original post:
Credential Theft Via Spoofed Login Pages Increase, Healthcare Top Target - HealthITSecurity.com
- Types of Blindness, Causes, and Their Treatment - Healthline - March 28th, 2025
- Types of blindness: Partial, total, congenital, and more - March 28th, 2025
- International collaborations helping understand the physical activity levels and well-being of children with visual impairment - Murdoch University - March 28th, 2025
- Revel in the Rainbow: Color-Blindness-Correcting Glasses Debut at Wooden Shoe Festival - Portland Monthly - March 28th, 2025
- Prevent Blindness Declares April as Women's Eye Health and Safety Month, Providing Free Educational Resources to the Public and Professionals - PR Web - March 28th, 2025
- Partial blindness hasn't stopped Oklahoma State's Stailee Heard from leading the Cowgirls into NCAAs - The Washington Post - March 28th, 2025
- Nine out of ten cases of blindness caused by glaucoma could be prevented through annual check-ups - Euro Weekly News - March 28th, 2025
- The silent sight thief: The devastating effects of glaucoma on mental health and quality of life - News24 - March 28th, 2025
- Rosie O'Donnell Celebrates Her 63rd Birthday After Move to Ireland as She Slams 'Willful Blindness' in Trump Administration - AOL - March 28th, 2025
- Partial blindness hasn't stopped Oklahoma State's Stailee Heard from leading the Cowgirls into NCAAs - Eagle-Tribune - March 28th, 2025
- The Longevity Wake-Up Call And The Blindness Of Leadership To It - Forbes - February 24th, 2025
- Album Review: Blindness // The Murder Capital - The Indiependent - February 24th, 2025
- The Murder Capital - Blindness - Northern Transmissions - February 24th, 2025
- The Murder Capital: Blindness review - independent pop | Indie - The Line of Best Fit - February 24th, 2025
- Prevent Blindness Kicks Off Second Annual "Retinopathy of Prematurity (ROP) Awareness Week," Feb. 24- March 2, 2025, as Part of its ROP... - February 24th, 2025
- Prevent Blindness Kicks Off Second Annual Retinopathy of Prematurity Awareness Week - Vision Monday - February 24th, 2025
- Gene therapy for rare childhood blindness shows lasting vision gains - R&D World - February 24th, 2025
- The Murder Capital's Blindness: A Voice of Significance in an Era Craving Authentic Discourse - Indie Is Not A Genre - February 24th, 2025
- Albums Of The Week: The Murder Capital | Blindness - Tinnitist - February 24th, 2025
- After Maine native testifies before Congress, Elon Musk targets his disability - Press Herald - February 24th, 2025
- Ozempic could BLIND you - it damages veins in the eye, major study finds - Daily Mail - February 24th, 2025
- Cerebral Venous Thrombosis Presenting With Binocular Blindness and Bilateral Sensorineural Hearing Loss - Cureus - February 24th, 2025
- Treatment for horses may lead to therapy for type of blindness - Mid Florida Newspapers - February 24th, 2025
- The Murder Capital: Blindness album review - Louder Than War - February 24th, 2025
- 'First in the world': London doctors cure blindness in children born with a genetic condition - WION - February 24th, 2025
- Doctors cure rare blindness in infants with gene therapy - NewsBytes - February 24th, 2025
- Gene therapy new trial treats rare blindness in children - Daily Jang - February 24th, 2025
- Ozempic Blindness Could Be Rare but Real: What Experts Say About the Risk - ZME Science - February 24th, 2025
- Parents of boy with rare eye condition hail amazing results of gene therapy - Yahoo News UK - February 24th, 2025
- Myths and Assumptions about Blindness - BBC.com - February 24th, 2025
- Man accused of beating victim, causing permanent blindness in one eye - KAIT - February 15th, 2025
- Scientists Find Link Between Weight Loss Drugs and Blindness - AOL - February 15th, 2025
- Treatment for horses may lead to therapy for type of blindness - University of Florida - February 15th, 2025
- How Ageism Impacts Adults with Low Vision - National Council on Aging - February 15th, 2025
- Ozempic and other weight loss drugs may be linked to conditions that could lead to blindness, study says - Quartz - February 15th, 2025
- Treatment for horses may lead to therapy for type of blindness - Phys.org - February 15th, 2025
- Treatment for Horses May Lead to Therapy for Type of Blindness - Morning Ag Clips - - February 15th, 2025
- Foundation Fighting Blindness Celebrates 20 Years of VisionWalk - PR Newswire - February 15th, 2025
- Woman Victim of 'Lash Blindness'Shock at How She Looks Without Them - Newsweek - February 15th, 2025
- Some Ozempic users are losing their vision - but scientists dont know why - The Independent - February 15th, 2025
- Those with visual impairments or blindness tackling the trails at Pico Mountain - WCAX - February 15th, 2025
- Prevent Blindness Issues Call for Nominations for the 2025 Jenny Pomeroy Award for Excellence in Vision and Public Health, and Rising Visionary Award... - February 15th, 2025
- Medical warning: Ozempic and Mounjaro may be linked to vision loss - India Today - February 15th, 2025
- New research links Ozempic to vision loss and risk of blindness - MSN - February 15th, 2025
- Ozempic Blindness: Weight Loss Drugs Linked to This Condition, Experts Warn - Tech Times - February 15th, 2025
- Ozempic Blindness Lawsuit Mounts: Shocking Side Effect Of Weight Loss Drug Is 'Eye Stroke,' What You Need To Know - IBTimes UK - February 15th, 2025
- The Politics Of Erasure: Gaza, Genocide, And The Wests Wilful Blindness OpEd - Eurasia Review - February 15th, 2025
- WHO launches new initiative to tackle the main cause of vision impairment - December 19th, 2024
- Blindness Advocates on Why There Should Be Audio Description Oscars - Variety - December 19th, 2024
- Diabetic retinopathy is treatable and preventable but only if you catch it in time - USA TODAY - December 19th, 2024
- AI: Could it help prevent blindness in diabetics? - BBC.com - December 19th, 2024
- Health Officials Investigate Rare Form of Blindness Tied to Ozempic - Gizmodo - December 19th, 2024
- Ozempic Could Be Blinding People Trying to Lose Weight - VICE - December 19th, 2024
- What is retinitis pigmentosathe vision disorder in the movie Blink? - National Geographic - December 19th, 2024
- VR shows promise in aiding navigation of people with blindness or low vision - Health Tech World - December 19th, 2024
- Ozempic could be linked to a common cause of sudden blindness, study finds - Quartz - December 19th, 2024
- New virtual realitytested system shows promise in aiding navigation of people with blindness or low vision - Tech Xplore - December 19th, 2024
- Ex-meth user who gouged her own eyeballs out while high says she is happier years after nightmarish episode - New York Post - December 19th, 2024
- Officials investigating link between Ozempic and eye-rotting disease that makes people blind - Daily Mail - December 19th, 2024
- Youngster to 'have eye removed' after minor fall - but NHS waitlist 'over 3 years' - NationalWorld - December 19th, 2024
- Restoring Vision: The Promise of Stem Cells in Healing Blindness - This is Local London - December 19th, 2024
- COAVS and Fred Hollows Foundation strengthen efforts to combat blindness in Pakistan - 24newshd - December 19th, 2024
- Study finds link between Ozempic and increased risk of vision loss - The Express Tribune - December 19th, 2024
- Going blind at 33 is devastating I wont see my childrens faces as they grow up - The Telegraph - December 19th, 2024
- Europol terror report reveals stark blindness about where the danger lies - Gript - December 19th, 2024
- Elton John lost his vision; signs and symptoms of eye infections that can cause blindness - The Times of India - December 6th, 2024
- Elton John's battle with blindness: How 77-year-old star's husband David Furnish guided him around premiere as - Daily Mail - December 6th, 2024
- Experimental study shows connection between COVID infection and age-related blindness - Medical Xpress - December 6th, 2024
- Elton John confirms shocking blindness after severe infection fight: I havent been able to see.. - Hindustan Times - December 6th, 2024
- Yes, an Eye Infection *Can* Lead To Vision Loss Heres How - Katie Couric Media - December 6th, 2024
- Elton John Battling Partial Blindness After Serious Eye Infection - Digital Music News - December 6th, 2024
- CU Anschutz researchers working to cure blindness through total eye transplantation - 9News.com KUSA - December 6th, 2024
- Elton John lost his vision from an eye infection. Here's why that might happenand how to prevent it - Fortune - December 6th, 2024
- Elton John announces blindness due to infection - CBS19.tv KYTX - December 6th, 2024
- David Frost: I suffer from face blindness. As a politician, being unable to identify people is agony - The Telegraph - December 6th, 2024
- Hes still standing how Elton John has survived far worse than blindness - The Telegraph - December 6th, 2024
- Foundation Fighting Blindness Partners with University of Colorado Anschutz Medical Campus and Other Leading Institutions to Secure Up to $46 Million... - December 6th, 2024
- Walmart helping low vison and blind customers shop with new app - KSLA - December 6th, 2024
- Elton John Says He Is Blind In The Right Eye Due to An Infection; What Is It All About? - Times Now - December 6th, 2024
- Trumps Win: The Blindness of Republicans and Democrats - The Times of Israel - December 6th, 2024