[ad_1]
Sad news report thousands of college and university students are being targeted by cybercriminals who are using the domain directly to hack Instagram and steal user credentials. An attack can bypass the security measures of Microsoft 365 and Exchange.
According to the report, “The attack created by the community, which has reached almost 22,000 mailboxes, used the hands of Instagram users in the posts that show the dead as a ‘different login’ ‘ on their account.” Attackers also sent email messages to victims from a legitimate email domain, making it more difficult for users with security technology to identify malware.
The email alleges that Instagram uses a clever technique to trick victims into believing it’s real: a fake image. The email appears to be from Instagram’s support team and includes the sender’s name, Instagram profile and email address. The user will be notified that “an unknown device from a specific location and machine … has accessed their account,” and will be asked to click on a link asking them to “save” their login information, via the fact that the user is redirected to a fraudulent landing page allows attackers to steal the user’s credentials.
Researchers from Armorblox who investigated the scam recommend that users watch for social engineering signals, review all emails for anomalies, and use multiple authentication and password management across platforms. personal accounts and professional accounts.
[View source.]
[ad_2]
Source link