We started the year, and before the end of the first month, new forms of phishing attacks have already been detected.
Cybersecurity is a crucial issue in an increasingly digitized world. Cybercriminals are constantly looking for new ways to attack businesses and individuals, and it’s important to always stay on top of the latest techniques used.
This week, an unusual phishing technique has been detected. Avanan, a specialized cybersecurity company, has published an article on its blog describing a new attack where hackers hide malicious content within an empty image within an HTML attachment in phishing emails that appear to come from DocuSign.
Cybercriminals use this technique to hide their true intent as it contains a legitimate link, allowing the email to bypass link checking and security scanners. Experts recommend caution with emails that contain HTML and suggest blocking all HTML attachments by treating them as executables.
"Get human firewalls to complete the defense of your organization"
The best way to protect against these types of attacks is through security awareness, training employees to recognize social engineering attacks, even the most innovative ones like the one in this article. Threat actors are constantly evolving, so it is crucial to keep employees’ common sense awake, so that even if the attack is novel or a technical variant that evades security systems, they can identify and stop it in time, getting human firewalls to complement your organization’s defense.