• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 26th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Security

Russian Spear-Fishing Website Hosts Outlook Web App Phishing Page

January 17th, 2015 Waqas Security 0 comments
Russian Spear-Fishing Website Hosts Outlook Web App Phishing Page
Share on FacebookShare on Twitter

Originally this Russian website was designed for purely non-controversial spear-fishing activities, but now its log-in page has been compromised and displays a phishing page.

The agenda of this campaign is to steal login details of Outlook Web App.

Read More: Your Office Document may be Vulnerable to Malware: Warns Microsoft

The Scam:

According to security researchers who have been observing this campaign, the target was university students and an educational institution.

This scam relied upon a very real-looking fake page for tricking unsuspecting students, staff and faculty members. Attacker’s motive was to get the Outlook Web Access credentials leaked.

One significant difference between the real and fake log-in page was that to access account the fake one additionally asks for entering email address while the real one just needs username and password.

russian-spear-fishing-website-hosts-outlook-web-app-phishing-page-2-1024x686

Users must note that in most cases this log-in information is used for accessing other accounts.

According to ProofPoint, if even one user gets fooled by this fake page, the hacker can access valuable information and may even access other resources.

As a result, attackers can easily retrieve financial information of confidential data as they can move laterally through the network.

In this spear-fishing email scam the security company hasn’t been able to reveal the bait yet. However, if the quality of this fake page is considered, the chance is high that it involves social engineering proficiency.

It is important that users check the URL of every log-in page before providing personal information. Special care should be given if the URL comes through email or from an unknown source.

Follow @HackRead

  • Tags
  • Cyber Crime
  • Hotmail
  • Outlook
  • Russia
  • security
Facebook Twitter LinkedIn Pinterest
Previous article Charlie Hebdo Aftermath:- About 19,000 French websites hacked so far
Next article #JeSuisCharlie Being Used by Hackers To Spread Malware
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
SonicWall hacked after 0-day flaws exploited by hackers

SonicWall hacked after 0-day flaws exploited by hackers

Gamarue malware found in UK Govt-funded laptops for homeschoolers

Gamarue malware found in UK Govt-funded laptops for homeschoolers

Shazam Vulnerability exposed location of Android, iOS users

Shazam Vulnerability exposed location of Android, iOS users

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
Man jailed after attempting to buy 3-year-old girl on dark web
Cyber Crime

Man jailed after attempting to buy 3-year-old girl on dark web

77
SonicWall hacked after 0-day flaws exploited by hackers
Hacking News

SonicWall hacked after 0-day flaws exploited by hackers

117
Massive privacy risk as hacker sold 2 million MyFreeCams user records
Cyber Crime

Massive privacy risk as hacker sold 2 million MyFreeCams user records

156

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us