Attackers Use Fake Chatbot To Launch Phishing Attacks On Users

Share post:

Cybercriminals use a fake chatbot via phishing to target unsuspecting victims with malware, according to a new report by Trustwave.

The attack starts with a phishing email pretending to be from DHL. The email content mentions package delivery problems while promoting users to click on a link.

The link directs the victims to a downloadable PDF file, which shows content impersonating DHL. The file tells users that a shipment has been redirected, and to resolve the issue, they must click on another link.

After clicking on the second link, the users are taken to a chatbox-like page. There, some bot messages are displayed asking for confirmation of parcel delivery. There is only Yes/No option. After clicking on the Yes option, the users are asked to enter their e-mail credentials and confirm a Captcha.

In the final phase of the attack, users are asked to enter their credit card details to pay for parcel delivery.

To protect against this form of phishing attacks, users are advised to carefully check each email before clicking on embedded links.

They are also recommended to use email protection solutions to detect phishing campaigns and suspicious emails.

The sources for this piece include an article in TechRepublic.

Featured Tech Jobs


Related articles

The US government and Its Microsoft dependency: A cybersecurity dilemma

Microsoft's series of high-profile cybersecurity failures has once again spotlighted the complex relationship between the tech giant and...

Senator Colin Deacon and our digital future: HashTag Trending, the Weekend Edition, April 13, 2024

Welcome to Hashtag Trending The Weekend Edition. I’m your host, Jim Love. I can understand that many of you might get frustrated about politics. What we see for the most part is a lot of BS. Ask a politician a simple question. You get a lot of non answers, talking points, ways their political opponents

Cyber Security Today, Week in Review for week ending Friday, April 12, 2024

This episode features a discussion on Microsoft's cybersecurity troubles, worries about open source, a warning about abusing IT help desks to launch attack

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways