NPAV researchers have reported an all-new malware campaign stealing login credentials.
The research team at NPAV has recently detected a phishing mail that is a part of a phishing campaign launched by hackers. The image of the email is attached below to provide you a reference.
The email states that there are several outgoing emails that were not delivered to desired recipients as the user account has encountered a DNS error. To make the email alarming and urgent, hackers have informed the user that these emails will shortly be deleted from the server.
The email provides an option for the user to clear the mailbox DNS cache. The user is redirected to a hacker-controlled login page once he clicks the “Take action to restore DNS” option.
The login page shown above is a hacker-controlled page and will steal any information that the user decides to provide. Hackers can use user-entered passwords to hack other accounts and platforms which share the same credentials.
NPAV recommends users to never trust these emails and messages as they are mere phishing scams. Refrain from providing any information to these pages and try not to visit them.
Install NPAV on your devices to keep them protected from all kinds of cyberattacks. Use NPAV and join us on a mission to secure the cyber world.