Share this article
Latest news
With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low
Copilot in Outlook will generate personalized themes for you to customize the app
Microsoft will raise the price of its 365 Suite to include AI capabilities
Death Stranding Director’s Cut is now Xbox X|S at a huge discount
Outlook will let users create custom account icons so they can tell their accounts apart easier
Phishing attacks on the rise with fake Microsoft login pages
2 min. read
Published onSeptember 8, 2020
published onSeptember 8, 2020
Share this article
Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more
Key notes
We have already seen a serious increase in malware and phishing attacks due to the fact that people are forced to work from home.
Now we need another reason for you to keep your eyes open at all times when youlog into what they seem familiar locations.
According to areportreleased bysecurity expertsfrom IRONSCALES, there are more than 9.500 Microsoft fakeloginpages out there, ready to steal your credentials.
What are the top companies affected by fake login pages?
The researchers spent the first half of 2020 to identify fakeloginpages used for support hacks and phishing campaigns.
They detected more than 50.000 fakeloginpages and approximately 2.500 of them were polymorphic which means that they changed to mimic the likeness of the page depending on the victim’s prerequisites.
The most commonly selected victims for thesephishing attacksworked in the financial, healthcare, and technology industries but also targeted government agencies.
IRONSCALES also presented the situation with the top brands affected by this problem.
On the top of the list is PayPal followed closely byMicrosoftand Facebook.
How can a fake login page affect you?
PayPal can affect millions of people and losing the credentials may result in the direct loss of your earnings stored there.
However, the more concerning risk comes from the 9.500 fakeloginpages that can affect not only personal accounts but also company accounts for Office 365, SharePoint, and One Drive.
That means, of course, that whole businesses can be put to danger by this sort of issue. And not long ago we signaled a newOffice 365 phishing campaign.
Usually, you receive an e-mail that appears legitimate and a link guiding you to the fakeloginpage with a purpose that also seems legitimate.
Most of these messages are very hard to be detected byspam filtersor any other technical controls so the only real filter is you.
The only solution for avoidingphishingand fakeloginpages is to carefully analyze the e-mails you open, the purpose of the message and, if you get there, the target page that you are about tolog into.
If you’ve been a phishing or fakeloginpage victim, tell us your story in the Comments section below.
[wl_navigator]
More about the topics:Cybersecurity,Phishing
Claudiu Andone
Windows Toubleshooting Expert
Oldtimer in the tech and science press, Claudiu is focused on whatever comes new from Microsoft.
His abrupt interest in computers started when he saw the first Home Computer as a kid. However, his passion for Windows and everything related became obvious when he became a sys admin in a computer science high school.
With 14 years of experience in writing about everything there is to know about science and technology, Claudiu also likes rock music, chilling in the garden, and Star Wars. May the force be with you, always!
User forum
0 messages
Sort by:LatestOldestMost Votes
Comment*
Name*
Email*
Commenting as.Not you?
Save information for future comments
Comment
Δ
Claudiu Andone
Windows Toubleshooting Expert
Oldtimer in the tech and science press, with 14 years of experience in writing on everything there is to know about science, technology, and Microsoft
