Advice to ConsumersĬonsumers should be aware of scammers trying to harvest OneDrive details and should follow these best practices: – However, they should notice the URL hosting the OneDrive login page is not from a Microsoft domain and should be regarded as suspicious. The user is then presented with a login screen requesting their credentials. Scammers are trying to harvest company and individual OneDrive credentials by pretending to appear as a non-profit organization looking for volunteers. If someone clicks on the open PDF link, it will take them to the below OneDrive login page. Some emails appear like charitable organizations looking for volunteers to help the community. Fake Charitable Organization Tries to Trick Volunteers However, by this point, the scammers have already stolen the user’s OneDrive information. When they enter their OneDrive information they will receive an error message saying, “Sorry, but we’re having trouble signing you in”. If they do so, it brings them to the below Microsoft login page where they enter their email address and password.Īfter attempting to sign in, the victim will be presented with an error message, as seen in the below screenshot. If a recipient clicks on the Download PDF link, it will take them to the page shown above where they are prompted to login. Accepting an email document from a random and unsolicited consulting firm should be regarded as suspicious. Scammers pretend to be a consulting firm to share a secured document with the customer regarding the COVID-19 pandemic. Fake Consulting Firm Attempts to Trick Users with Secured Document This should be a red flag to the user that this may be a scam or phishing attack.Īs intended by the scammers, the user cannot access the OneDrive document to view the updated government questionnaire and, instead, will receive an error message to try again later.īy this stage, the scammers would have already stolen the user’s OneDrive personal information. A user should be aware that a legitimate OneDrive login page will never be hosted on a non-Microsoft domain. Notice that the link points users to a vulnerable WordPress site that contains a credential phishing landing page. When clicked, it takes them to the below OneDrive screenshot prompting them to enter their personal information. When the folder in the above image is clicked on, it redirects to the screenshot shown below.Ī warning saying “Hmm… looks like this file doesn’t have a preview we can show you” baits the visitor into clicking on the Open button. Remember: governments do not generally email the masses, sending unrequested documents, so a user could verify by examining the sender email address and location in the email headers and could visit the legitimate government site to see if there is COVID-19 information there instead. Scammers pretend to be from government offices and deliver documents that contain the latest live questionnaire regarding COVID-19. As the screenshot below illustrates, the goal is to steal the user’s OneDrive credentials. Nefarious Groups Attempt to Harvest Users’ Credentialsīelow we will take you through three examples of this kind of attack, coming from a government organization, consulting firm and a charitable organization hosted in OneDrive to make them appear more genuine to users. We would like to educate McAfee users and the public about the potential risks with these scams. They will pretend to be emailing from government, consulting, or charitable organizations to steal victim’s OneDrive details. OneDrive scammers will steal sensitive account information like usernames and passwords. There are number of ways scammers use to target personal information and, currently, one example is, they are taking advantage of the fear around the virus pandemic, sending phishing and scam emails to Microsoft OneDrive users, trying to profit from Coronavirus/COVID-19.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |