Netcraft has published new research in which the company has recently observed that criminals abused Twilio SendGrid’s email delivery, API, and marketing services to launch a phishing campaign impersonating itself.
Hackers behind this novel phishing campaign used SendGrid’s Tracking Settings feature, which allows users to track clicks, opens, and subscriptions with SendGrid. The malicious link was masked behind a tracking link hosted by SendGrid.
The email headers reveal that phishing emails are sent using SendGrid’s infrastructure. All the domain names appear to be other SendGrid customers, suggesting criminals use compromised SendGrid accounts rather than registering their own.
Netcraft has identified at least nine companies whose accounts have been used in the campaign. These companies span a range of industries, including cloud hosting, energy, healthcare, education, property, recruitment, and publishing.
You can read the research here.
Like this:
Like Loading...
Related
This entry was posted on February 7, 2024 at 9:00 am and is filed under Commentary with tags Netcraft. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Email Marketing Company Used to Phish Itself in Novel Impersonation Campaign: Netcraft
Netcraft has published new research in which the company has recently observed that criminals abused Twilio SendGrid’s email delivery, API, and marketing services to launch a phishing campaign impersonating itself.
Hackers behind this novel phishing campaign used SendGrid’s Tracking Settings feature, which allows users to track clicks, opens, and subscriptions with SendGrid. The malicious link was masked behind a tracking link hosted by SendGrid.
The email headers reveal that phishing emails are sent using SendGrid’s infrastructure. All the domain names appear to be other SendGrid customers, suggesting criminals use compromised SendGrid accounts rather than registering their own.
Netcraft has identified at least nine companies whose accounts have been used in the campaign. These companies span a range of industries, including cloud hosting, energy, healthcare, education, property, recruitment, and publishing.
You can read the research here.
Share this:
Like this:
Related
This entry was posted on February 7, 2024 at 9:00 am and is filed under Commentary with tags Netcraft. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.