Cyber criminals tricking employees using YouTube with phishing sites
Cyber criminals are promoting tools that help to trick users into handing over their login details using YouTube channels, according to security researchers. Experts at Symantec discovered a phishing site posing as Amazon with a comment in its HTML code that promoted the hacker’s website and YouTube channel.
The details on the page, named “Scama Amazon”, led to a YouTube channel with only five subscribers called “code nour”, which featured phishing walkthrough videos.
“Code nour isn’t the only phisher with a YouTube presence,” said Symantec’s Nick Johnston in a blog post on the security firm’s website. “Another phisher’s video shows his desktop, complete with an arsenal of tools, including a SOCKS proxy and VPN clients.
“We normally expect this kind of activity to take place on secretive underground forums, so it’s surprising that phishers are so brazenly, and publicly, publishing this material on YouTube.”
He added that the cyber criminals’ openness shows “the scale of today’s phishing problem”, and that the challenge for security teams is only set to increase.
There have been many high-profile phishing attempts in recent months. Last week it was revealed that a Snapchat employee handed over staff payroll information to a fraudster who pretended to be the company’s CEO, Evan Spiegel.
And last month security experts at McAfee discovered a web server full of convincing-looking fake login pages targeting users of sites including Google and Yahoo.
Phishing is a concern for businesses, especially after recent research showed that 87 per cent of employees open the malicious emails on the same day they are sent.