You may be seeing a lot of DocuSign-related emails in your inbox this month. Or Microsoft. Or other big names. And if you happen to be expecting something to sign or have accounts with these big firms, the phishing attempts can look very convincing. ITPro reports:
Cyber criminals are increasingly using PDF attachments to impersonate major brands for phishing campaigns, according to new research from Cisco Talos.
The PDFs are used to entice victims to phone numbers purportedly belonging to brands including Microsoft, DocuSign, Dropbox, PayPal, and Adobe in what’s known as Telephone-Oriented Attack Delivery (TOAD).
Victims are instructed to call a specific number in the PDF to resolve an issue or confirm a transaction.
The attacker then poses as a legitimate representative of the firm and attempts to manipulate them into disclosing confidential information or installing malicious software on their computer.
In a blog post detailing the campaign, Omid Mirzaei, security research lead at Cisco Talos, said this particular attack method, described as ‘callback phishing’ does not rely on traditional techniques such as using fake websites or phishing links.
Read more at ITPro.
