Advertisement
Hackers are getting creative with their phishing tactics, using TikTok as a tool to steal Microsoft Office 365 credentials, according to a new report from Cofense.
How the Attack Works
Researchers from Cofense have observed a new phishing campaign where attackers send emails threatening victims with the deletion of all their emails unless they click a button. What sets this attack apart is that the button directs users to TikTok.
The scammers utilize TikTok URLs that are often found in the bios of profiles. These links can lead to various external websites, allowing attackers to redirect victims to malicious sites of their choosing.
The Scam in Action
If a recipient of the phishing email doesn’t recognize the scam and clicks the button, they are taken through several redirects until they land on a webpage designed to look like a legitimate Microsoft 365 login page. This fake site features the Microsoft logo and even autofills the user’s email address to enhance its authenticity.
Unfortunately, since this page is controlled by the hackers, any information entered there—like passwords—goes directly to them.
Spotting the Phishing Attempt
While using TikTok URLs is a new twist, the overall approach remains familiar. Here are some red flags to watch for:
- The email originates from an unrelated domain.
- It contains numerous grammar and spelling errors.
- The URL of the landing page does not resemble a legitimate Microsoft domain.
Recognizing these signs can help users avoid falling victim to this scam. Staying vigilant and cautious with incoming emails is essential, as not everything in your inbox can be trusted.