Skip to content

New Password Hacking Warning For Gmail, Facebook And Amazon Users

August 29, 2024 – Published on Forbes

New threat analysis from researchers has revealed a dramatic rise in the number of password-stealing attacks targeting Amazon, Facebook and, most of all, Google users.

It should come as no surprise that the likes of Gmail, Facebook and Amazon account credentials are so sought after by malicious hackers. After all, such accounts can be used to complete the cybercrime triumvirate of data theft, malware distribution and credit card fraud, respectively. Google accounts, in particular, are something of a skeleton key that can unlock a treasure trove of other account credentials and personal information to commit fraud. Just think about the information that is contained in your Gmail inbox, and the chances are high that you have one given how popular the web-based free email service is. And that’s before you consider how many organizations still send password change requests and second-factor authentication links to your email account.

For example, a new and worrying ongoing phishing campaign targeting more than 130 U.S. organizations has been identified, according to researchers Rui Ataide and Hermes Bojaxhi from the GuidePoint Research and Intelligence Team.

As is often the case in so-called spear-phishing campaigns, the starting point for this attack is to target individuals within organizations rather than taking a scattergun approach to the entire business address book. The researchers said that, since June this year, the threat actors have registered at least eight domain names that are created to resemble those of legitimate virtual private network technologies that are used by the targeted organizations themselves. More proof of this being a highly motivated attacker doing the homework for an attack on specific users of particular enterprises. 

Read More HERE.