• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • April 15th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Cyber Crime
Phishing Scam

New Phishing Scam Targets Digital Payment and Online Banking Users

February 27th, 2017 Waqas Cyber Crime, Phishing Scam, Scams and Fraud, Security 0 comments
New Phishing Scam Targets Digital Payment and Online Banking Users
Share on FacebookShare on Twitter

The cyber criminal community widely depends on phishing scams to target unsuspected users, that’s why these attacks are not only increasing but also adding sophisticated means to trick users into giving away their personal and financial details.

Recently, security researchers at Cyren discovered a phishing scam targeting banking and digital payment customers worldwide. The targeted platforms according to researchers include online banking customers of Capital One, Chase, Fargo, Wells and online money transfer giant PayPal and Venmo.

Screenshot of the phishing email sent to Venmo customers.

Note the Data:text file embedded with HTML file

[fullsquaread][/fullsquaread]


Screenshot of the phishing email sent to Chase Online customers.

The new phishing campaign carries the same old method of tricking users into clicking on a phony attachment file, but this time the attached HTML file is embedded with data URLs. It must be noted that last month, Gmail users were targeted with a similar phishing scam in which attackers embedded data URLs in PDF files which took users to a fake Gmail sign in page.

However, since the Gmail scam has been busted the attackers are heavily relying on HTML files to phish users. The latest scam according to Cyren is already reaching new heights with 50% increase only in the month of February. 

“These attacks are proving effective at evading detection by many email security systems, which typically allow HTML attachments, or are not capable of scanning their content, and therefore do not detect the telltale “data:text” URI header — as opposed to .exe attachments, which are commonly blocked,” notes Cyren.

This is not the first time when Cyren has discovered such scams. In the last couple of months, the firm has identified sophisticated phishing and malware scams including malware stealing data from cryptocurrency wallets and malware-infected PDF files targeting Facebook users in the name of celebrity nudes.

As far as their latest discovery, remember, this phishing scam only targets users with HTML attachment files, there are no links in the email body and neither does it ask users to click on any link. In case you have received such email avoid clicking and downloading the attachment file.

[fullsquaread][/fullsquaread]

Also, PayPal phishing scams are at large where scammers are using highly sophisticated tricks to steal login credentials from unsuspected users.If you have an account on PayPal, it is advisable to log in to your PayPal account by entering the web address into your browser’s address bar or via an official PayPal app. The PayPal website has a verified green signature as shown in the screenshot below:


DDoS attacks are increasing, calculate the cost and probability of a DDoS attack on your business with this DDoS Downtime Cost Calculator.

  • Tags
  • Cyber Crime
  • hacking
  • internet
  • Malware
  • Paypal
  • Phishing
  • Phishing Scam
  • Scam
  • security
Facebook Twitter LinkedIn Pinterest
Previous article Evolved Version of MongoDB Ransomware Caught Targeting MySQL Databases
Next article 126 vBulletin forums hacked; 819,977 accounts leaked on hacking forums
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
Unpatched MS Exchange servers hit by cryptojacking malware

Unpatched MS Exchange servers hit by cryptojacking malware

Indian supply-chain giant Bizongo exposed 643GB of sensitive data

Indian supply-chain giant Bizongo exposed 643GB of sensitive data

FBI accessing computers across US to remove malicious web shells

FBI accessing computers across US to remove malicious web shells

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
Unpatched MS Exchange servers hit by cryptojacking malware
Security

Unpatched MS Exchange servers hit by cryptojacking malware

Indian supply-chain giant Bizongo exposed 643GB of sensitive data
Leaks

Indian supply-chain giant Bizongo exposed 643GB of sensitive data

FBI accessing computers across US to remove malicious web shells
Security

FBI accessing computers across US to remove malicious web shells

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us