Hello folks,
I recently read an article where actors are now using voice mail to get people to act on things. This is possibly the lowest I’ve ever seen, but yet, I probably should not be surprised on this.
The thing about this voice mail attack is that it is sent like a service would that you’d use to get voice mail by email. Many different services are out there that send you email when you receive no info like voice mail, faxes, and confirmations of faxes received.
The thing that is notable about this attack is that the actors use an HTML file which bypasses security filters as most HTML files are harmless. When you open this one however, it will launch something you’re not expecting.
If you know you don’t normally receive voice mail by email, that should be your sign that something is amiss. You should know what your norms are, and how things are delivered. You should know the address the email comes from, the type of file whether wave or mp3 for voice mail, and PDF or TIF for faxing is delivered, and other types of notifications for your account are delivered.
Want to read more? COVID-19 Phishing Update: Voicemail Attacks Surface Targeting Office 365 Users is the article, and I’m sure after they target 365, they’ll target others.
You should also know whether you use 365 and if so, what site you should use to provide those credentials so you can utalize the services offered.
Discover more from Jared's Technology podcast network
Subscribe to get the latest posts sent to your email.