Cybersecurity researchers have just discovered a huge phishing campaign that has been going on since November last year.
Be aware if you are a Verizon user you might be in danger because there is where the campaign is active.
Nowadays everyone should keep a vigilant eye on their mobile devices, which now represent an effective attack vector, and will continue to rise on the cyberspace in the next years.
An even more warring aspect is that the new campaign looks so legitimate that many users take it as real.
In this campaign when users open the phishing email on a mobile device, it looks like it’s from Verizon customer support. Verizon is now aware of the issue and has been suspending the domains on its network.
Remember everything can be hacked. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;
Researchers also say that by looking at last year analytics we can see that mobile phishing attacks are on the rise, and largely focuses on consumer-side attacks. Mostly those cyberattacks represent consumer fraud attacks, like an IRS scam for a Social Security number or a Netflix account, for now, they are not going after corporate credentials and business data, but this it will change in the near future.
This new campaign is a big deal for hackers because access to a user’s mobile Verizon account can become very valuable to them. When an account is compromised the hacker will find who the user is, and from there if the user is a CEO or CFO, they can the information immediately; and the problems don’t stop here if the hacker has access to a mobile phone account, he/she can use the stolen credentials to launch business email compromises, fraudulent wire transfers, and ransomware.
The Media Trust reports that mobile attacks are most certainly on the rise. For example, they report a 46% increase in mobile attacks (59% are mobile phishing) from just February to March alone.
The conclusion is this: mobile attacks have increased significantly. In order to be safe and secured on a mobile device take this example: if a browser asks for your password, assume you are getting tricked!
Users should also be suspicious of emails that drive a sense of urgency, that ask the user to bypass standard procedures and common sense.
We would continue to monitor these cybersecurity problems. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company network, tests like this include: penetration testing and ethical hacking.