DemoBlade

Tech republic logo

News

Cso logo

When looking at all the different ways that hackers can threaten networks and enterprises, flashy incidents like ransomware scams often come to mind. But a relatively new kind of attack called business email compromise (BEC) has taken the lead in both frequency and overall damage, quickly becoming public enemy number one.

How Abnormal Security combats business email compromise

As more people are working remotely due to the coronavirus, cloud services have seen a surge in demand. But as this trend has unfolded, cybercriminals have found a ripe target to exploit. A blog post published Wednesday by security provider Abnormal Security describes how phishing attacks are taking advantage of Amazon Web Services to steal user credentials.

Phishing attack impersonates Amazon Web Services to steal user credentials

Bleeping computer logo

Cybercriminals have been keen to exploit COVID-19 to create coronavirus-related malicious apps, phony websites, and phishing emails. As the pandemic has triggered a huge shift toward remote working, so, too, have criminals been trying to target business employees working at home. In a blog post published Wednesday, Abnormal Security describes a new phishing campaign that exploits the need for VPNs.

Phishing attack impersonates IT staff to target VPN users

Microsoft Office 365 customers are targeted by a phishing campaign using bait messages camouflaged as notifications sent by their organization to update the VPN configuration they use to access company assets while working from home.

Office 365 phishing baits remote workers with fake VPN configs

Homepage

Breadcrumbs

Abnormal Security provides advanced email security to prevent credential phishing, business email compromise, account takeover, and more.

Abnormal Security

In a blog post published Friday, Abnormal Security explained how this latest campaign works. The initial phishing email claims to be sent by the WHO with a sender's address of support@who.international. Displaying the WHO's familiar logo, the email states that the World Health Organization has sent you a message, inviting you to click a link for Open Message. The URL for this link is hidden behind the text, so users can't clearly see it.

Phishing attack spoofs World Health Organization to steal email credentials

In a blog post published Friday, Abnormal Security explained how this latest campaign works. The initial phishing email claims to be sent by the WHO with…

description

sent, email, claims, message, sender's, logo, states, organization, link, open, phishing, inviting, click, hidden, published

keywords

https://images.abnormalsecurity.com/production/images/press/tech-republic-logo.png?w=1200&h=630&q=82&auto=format&fit=crop&dm=1631719258&s=b190d255d45b1f3b2da9f41aa1cdc4e7

Phishing attack spoofs World Health Organization to steal email…

https://abnormalsecurity.com/about/news/phishing-attack-spoofs-world-health-organization-to-steal-email-credentials

referrer

robots

twitter:card

twitter:creator

twitter:description

https://images.abnormalsecurity.com/production/images/press/tech-republic-logo.png?w=800&h=418&q=82&auto=format&fit=crop&dm=1631719258&s=eee08a78bd9cf87fd35b8d22b76cc943

twitter:image

twitter:image:alt

twitter:image:height

twitter:image:width

twitter:site

twitter:title

{"title":{"title":"Phishing attack spoofs World Health Organization to steal… | Abnormal"}}

Demo

Schedule a Demo

AI's Role in Cyber Defense

CNBC Disruptor 50: Abnormal Security

Generative AI Could Revolutionize Email—for Hackers

Ones to Watch in Tech

Email Subscribe

<p>Subscribe to our newsletter to receive updates on the latest attacks and new trends in the email threat landscape.</p>

Newsroom

<p>Abnormal Named a Leader in Gartner® Magic Quadrant™ </p>

vs Mimecast

vs Avanan

Secondary CTA

Whether FormComplete is utilized on a form

FormComplete

CTA Display

What text is displayed on the primary CTA (see sheet for details on copy)

Primary CTA Text

Form Columns

chakra-ui-ChakraProvider

Button

FramerWrapper

Container

Footer

Screen

PrimaryCtaText

FormColumns

CtaDisplay

VsMimecast

SecondaryCta

VsAvanan

Abnormal Solutions

react-awesome-reveal

lottie-react

date-fns

plasmic-nav

react-scroll-parallax-global

plasmic-embed-css

Abnormal Pages

loading-boundary

plasmic-query

plasmic-basic-components

Abnormal Legal

Abnormal Why Abnormal

Abnormal Landing Pages

plasmic-rich-components

Abnormal Partners

Abnormal Products

Abnormal Design System

Abnormal Marketing

antd5 hostless

react-slick

react-quill

Gartner mq 4x

Analyst Research

Gartner names Abnormal a Leader in Email Security Platforms, placed furthest for Completeness of Vision.

Abnormal Named a Leader in 2024 Gartner® Magic Quadrant™

Email Security

B H1 2025 Email Threat Report

Threat Reports

Learn how the malicious use of AI is amplifying the impact of BEC, VEC, and phishing attacks in our latest threat report.

H1 2025 - Adversarial AI: Attacker Innovation Escalates Advanced Email Threats

ABN Innovate Cover Event All

Webinars

Missed the live event? Don’t worry—you can still catch all the action on demand. Gain insights and best practices from top industry leaders, email security experts, and visionary innovators.

Innovate 2025: Transforming Cybersecurity with AI

Phishing attack spoofs World Health Organization to steal email credentials

Get AI Protection for Your Human Interactions