Skip to content

Security leaders discuss a sophisticated, ongoing phishing campaign

Posted by: GuidePoint Security

< 1 min read

August 30, 2024 – Published on Security Magazine

Research from the GuidePoint Research and Intelligence Team highlights a sophisticated, ongoing phishing campaign that has targeted over 130 organizations. This campaign targets employees by mimicking the VPN providers their organizations use, registering domain names that are similar to the legitimate domain names. 

Unfortunately, we continue to see creative attacks like these that prey on unsuspecting users. Using typosquatting domains (those that are very similar to the actual real VPN domain) is not a new tactic. What is more creative is the use of messaging channels outside of email. SMS is now the second most attacked vector and mobile phones have minimal to no protection, hence why threat actors are creatively attacking them with greater volume.  

Read More HERE.

Categories: Incident Response & Threat Intelligence
Tags:GRITphishing

GuidePoint Security

So-Phish-ticated Attacks
Update: September 16, 2024 Authors: Rui Ataide, Hermes Bojaxhi GuidePoint Security is continuing to monitor this ongoing campaign. At least […]
View Page

Related Articles

View All

  • GRIT Blog
So-Phish-ticated Attacks
Posted by: GuidePoint Security
Published 08/27/24, 01:06pm
Read More 4 min read
Phishing Services
Read More 2 min read
  • Email Security
Phishing as a Service
Read More < 1 min read