Internet

Not even the best defense protects you from this new Phishing attack

A new Phishing circumvents multiple authentication

If we think about what is the best defense we have to avoid being victims of Phishing, it is undoubtedly two-step authentication or multiple authentication. Basically it means that to log in it is not enough to just put the password, but a password is required. additional second step. In the event that the access code is stolen, that intruder will have to enter another code that we can receive by e-mail, SMS or through certain applications.

what about this new phishing method? The problem is that it is able to skip that multiple authentication. The best defense we have against this type of threat is ahead of us. It involves making victims secretly log in to their accounts directly on servers controlled by the attacker using the VNC screen sharing system.

To gain access to accounts protected by multiple authentication, until now attackers could use reverse proxies to get those codes. But of course, this technique is already detected by security measures and block logins. Platforms like LinkedIn even deactivate the account after a successful login.

So what does this new technique actually do? They use the VNC remote access software, specifically the non-VNC program. This application allows users to connect to a VNC server directly from the browser just by clicking on a link. That is where this Phishing technique comes into play.

What the attacker does is Send a link, for example to enter the Google account, to the victim. But the victim is actually entering through the VNC session without realizing it. In this way, a hacker can send targeted Phishing emails containing links that automatically launch the browser and log into the attacker’s remote VNC server.

Phishing is now more dangerous

How to avoid being a victim of this attack

Although we have seen that this new technique can make Phishing more dangerous than ever and prevent multi-factor authentication, the truth is that preventive measures do not change at all. We are going to have to do the same to be protected and not have problems.

The first thing is the common sense. It is essential not to click on any suspicious links that we come across. For example, a link that reaches us by email or social networks. We have seen what happens especially with this technique and what it can mean for our privacy.

It is also important keep everything updated. In many cases, this type of attack can take advantage of vulnerabilities in the computer that have not been corrected. This can lead to the entry of malware and the subsequent theft of passwords and account control. It is important to know how to detect when we are victims of Phishing.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *