A phishing campaign deployed recently at various businesses uses the company's home page to disguise the attack and trick potential victims into providing login credentials. This
is a new tactic, researchers say, that loads the legitimate page of the business and applies a fake login box on top of it. The attack starts with an email purporting to be from the company technical support team informing that some messages were blocked from
reaching the inbox because they were quarantined. To create a sense of urgency, the message from the attacker states that the emails are scheduled for deletion unless the recipient reviews them and takes action to recover them.
Learn more >