Scam emails, claiming to be from a member of eBay's security team, notify recipients that they have a security alert to resolve. The emails entice victims to click the AOLSearch link, which contains what appears to be an AOL URL address, in order to take action, according to Fortinet.
Following the phishing link takes the user to a site seeking personal information, thus putting the victim at risk of identity theft.
Phishing scams are hard to shut down because it's part of [scammers'] basic business model," said Derek Manky, Fortinet security research engineer.
"We don't have a clue who the originator [is],” he told SCMagazineUS.com. “[The phishing email] landed in one of our researcher's inbox."
Manky added that increasing user awareness is the best protection against social engineering attacks.
"In this case, email is a medium that should be treated as untrusted. Before following any links, users should always take careful consideration of the link, and they should never follow a third party's suggestion,” he said.
Fortinet said that “AOL is currently fixing this issue.”
An AOL representative could not be immediately reached for comment.
See original article on SC Magazine US
_(37).jpg&h=140&w=231&c=1&s=0)
_(33).jpg&h=140&w=231&c=1&s=0)
Cyber Resilience Summit
iTnews Executive Retreat - Security Leaders Edition
Huntress + Eftsure Virtual Event -Fighting A New Frontier of Cyber-Fraud: How Leaders Can Work Together
iTnews Cloud Covered Breakfast Summit
Live & Hands On Demo: Navigating the BMC AMI DevX Platform to Understand Code Faster Using AI
.jpg&h=271&w=480&c=1&s=1)
_(1).jpg&h=140&w=231&c=1&s=0)
