silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,176
Read more below:A newly spotted phishing campaign uses Microsoft voicemail notifications as baits to trick targets into opening HTML attachments that redirect to the attackers' landing pages using a meta element.
As detailed in research shared with BleepingComputer by email security firm Avanan, the campaign's operators are spamming potential victims with emails disguised as Microsoft Office 365 voicemail alerts.
These phishing emails instruct the targets to open the attachments to be able to listen to the voice messages, displaying the caller number and voicemail length within the message to look more convincing.
Phishing email sample
Microsoft Voicemail Notifications Used As Bait in Phishing Campaign
A newly spotted phishing campaign uses Microsoft voicemail notifications as baits to trick targets into opening HTML attachments that redirect to the attackers' landing pages using a meta element.
MetaMorph HTML Obfuscation Phishing Attack
Hackers are building upon the recent wave of HTML attachment phishing attacks with a new campaign that uses the <meta> refresh tag to hide malicious URLs.
www.avanan.com
