BitDam Detects New Phishing Trends in January

BitDam Detects New Phishing Evasion Tactics and Attack Trends as 2021 Commences

New techniques for phishing evade several security solutions in January

BitDam, through this ongoing monthly series, today outlined its detection of the leading phishing trends throughout January 2021, along with some cool facts about hackers’ preferred timing of attacks.

January’s findings include:


Phishing Websites Use Fake Error Messages to Trick Security Solutions

BitDam noted the introduction of phishing attempts that use a combination of several tactics to make it difficult for security solutions to detect and block them.

 

  • In January, attackers created designated domains to maintain control over email servers (an example of the domains created is 365outlookstore.org). One domain was created just three days before an attack was sent from it and detected.
  • Attackers used various techniques to make it more difficult to detect their scams. In one attack for example when clicking the email attachment, the user receives a fake error message. In clicking “Retry” the user is sent to a local website that shows another error message and requests a password. Once the password is entered, it is sent to and stored in an RSS application.
  • Security solutions tend to trust an email domain when it is new and without reputation. Additionally, the fake webpage is an error message, something that security solutions do not typically deem suspicious. Finally, the fake webpage requires an additional click for password request to emerge, another level of complexity for the security solution.
  • It is the combination of these tactics working together that makes detection difficult for traditional email security solutions.

 

Cool Fact – Friday Is Attackers Preferred Day for Phishing

Did you know that 37.2% of phishing attacks are sent to business emails on a Friday? It’s the most popular day for phishing. The least popular day is Sunday, as only 0.5% phishing attempts are delivered on this day.

 

  • As a reference, the weekday average is 18.9%.
  • Why is Friday the big day? At BitDam, we assume that attackers prefer Friday since employees are finishing their work, readying to start the weekend and therefore pay less attention to items that may look suspicious. Phishers take advantage of that.

 

“The evolution of phishing attacks continues. Here at BitDam we are seeing changes in tactics, complexity and execution. The level of sophistication of these scams can be quite high and through the month of January, we continued to see new versions of our old enemies,” said Liron Barak, CEO of BitDam. “Phishing is a lucrative business for those that send out emails with malicious links. We will continue to stay ahead of these attackers and let everyone know what we find and how to avoid becoming the next victim.”

BitDam offers a free phishing scanner that identifies phishing links with the press of a button. The scanner is available at https://bitdam.com/is-this-phishing/. BitDam ATP protects email, cloud drives and instant messaging platforms from advance threats including malware and phishing.

For more information about BitDam’s offerings please visit:  https://bitdam.com

BitDam Detects New Phishing Evasion Tactics and Attack Trends as 2021 Commences

New techniques for phishing evade several security solutions in January

BitDam, through this ongoing monthly series, today outlined its detection of the leading phishing trends throughout January 2021, along with some cool facts about hackers’ preferred timing of attacks.

January’s findings include:


Phishing Websites Use Fake Error Messages to Trick Security Solutions

BitDam noted the introduction of phishing attempts that use a combination of several tactics to make it difficult for security solutions to detect and block them.

 

  • In January, attackers created designated domains to maintain control over email servers (an example of the domains created is 365outlookstore.org). One domain was created just three days before an attack was sent from it and detected.
  • Attackers used various techniques to make it more difficult to detect their scams. In one attack for example when clicking the email attachment, the user receives a fake error message. In clicking “Retry” the user is sent to a local website that shows another error message and requests a password. Once the password is entered, it is sent to and stored in an RSS application.
  • Security solutions tend to trust an email domain when it is new and without reputation. Additionally, the fake webpage is an error message, something that security solutions do not typically deem suspicious. Finally, the fake webpage requires an additional click for password request to emerge, another level of complexity for the security solution.
  • It is the combination of these tactics working together that makes detection difficult for traditional email security solutions.

 

Cool Fact – Friday Is Attackers Preferred Day for Phishing

Did you know that 37.2% of phishing attacks are sent to business emails on a Friday? It’s the most popular day for phishing. The least popular day is Sunday, as only 0.5% phishing attempts are delivered on this day.

 

  • As a reference, the weekday average is 18.9%.
  • Why is Friday the big day? At BitDam, we assume that attackers prefer Friday since employees are finishing their work, readying to start the weekend and therefore pay less attention to items that may look suspicious. Phishers take advantage of that.

 

“The evolution of phishing attacks continues. Here at BitDam we are seeing changes in tactics, complexity and execution. The level of sophistication of these scams can be quite high and through the month of January, we continued to see new versions of our old enemies,” said Liron Barak, CEO of BitDam. “Phishing is a lucrative business for those that send out emails with malicious links. We will continue to stay ahead of these attackers and let everyone know what we find and how to avoid becoming the next victim.”

BitDam offers a free phishing scanner that identifies phishing links with the press of a button. The scanner is available at https://bitdam.com/is-this-phishing/. BitDam ATP protects email, cloud drives and instant messaging platforms from advance threats including malware and phishing.

For more information about BitDam’s offerings please visit:  https://bitdam.com

Schedule a Demo

Enter your email to get a free trial invitation