New Phishing Tool Already Yielding Results for Criminals

Phishing

The recent successful CryptoChameleon attack on the US Federal Communications Commission (FCC) is the latest example of how sophisticated criminals have become in their ability target the asset and wealth management industry with nefarious phishing attacks to monetize their criminal efforts.

Criminals continue to get better and better in their ability to target the asset and wealth management industry with targeted phishing and typosquat domain campaigns. The latest example is CryptoChameleon, which, according to an article in Bleeping Computer, is targeting users of the U.S. Federal Communications Commission’s Okta service.

The attacks are very sophisticated. The ‘sign-in’ page is a very close replica of the website that is being targeted, as is the URL – often, there is only one character that is different from the legitimate website URL, or it’s a character that is close (at a glance) to one in the legitimate website URL (think u and v). Cleverly, this particular attack uses the “Captcha” challenge as a way to seem legitimate. It’s a simple, yet very effective way to break into an asset manager’s account – which currently appears to be directed predominantly at crypto traders.

Those in the asset and wealth management industries must remain vigilant. Take time to check the URL in any email you receive that asks you to click a link. If you’re receiving a Multi-Factor Authentication (MFA) notice, and you’re not currently trying to login to a website, report it to your provider. Relatedly, BW Cyber offers an industry leading Typosquat Domain Alerting service to help our clients prevent Typosquat Domain attacks on their firm. For more information, contact info@bwcyberservices.com.