1 / 2

Phishing scam on Instagram

Cyberops is Indiau2019s leading organization in the field of Information security.

Download Presentation

Phishing scam on Instagram

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Beware! A New Phishing scam targeting Instagram users Instagram is one of the most popular social networking applications and it is used by most of us to share pictures and videos with our friends and family, but have you ever thought that even your Instagram account could be hacked and it doesn't matter how good your password is. A new phishing scam has been detected by the security researchers that target Instagram users. This scam uses a simple sodal engineering technique like failed login attempt alerts coupled with a code which gives a feel of two-factor authentication (2FA) codes. How does It work? According to Paul Ducklin from Sophos, scammers use phishing emails to send fake Instagram login alerts. Scammers are stating that someone has attempted to login to the targets account. The Targeted users are then asked to confirm the identity by clicking on a link that comes in the message. To make it look like real, the message includes a fake 2FA code which is supposed to be used by the victim when they login to the fake Instagram page. When the targeted user clicks on the sign-in link, the actual phishing website opens. This web page looks exactly similar to the Instagram account sign-in screen. Even the browser does not raise an alarm when the phishing page is opened. It is secured with a valid HTTPS certificate and displays a green padlock - which indicates that this site is safe. But there is a small twist in the domain name of the Instagram, it h. a fake domain ending with ".cf enough to prove that it is fake. So, if the user isn't smart enough to note down that fake URL of the Instagram, he or she is likely to fall into this phishing attack. Therefore, one should not trust each and every email that they see in their mailbox- especially when it contains some URLs or Attachments. - ​by Cyberops Infosec Like this article? For more blogs Visit ​https://cyberops.in/blog/​.

  2. Cyberops​ is India’s leading organization in the field of Information security. Advancement in technology and interconnected business ecosystems has combined to increase exposure to cyber attacks. We aim to digitally shield the cyberspace by offering various products and services. We are hovering to influence our proficiency and global footprint in the field of information security and cyber crime investigation. We foster certified trainings on Information Security and provide penetration testing for security audits, and Cyber Crime Investigation services for various sectors to meet their specific needs. Cyberops​ is the best​​company for​​VAPT​ & ​Penetration Testing in India​. Our services area - Network Security Companies in Mumbai Penetration Testing Companies in Mumbai Cyber Security Companies in Mumbai VAPT Companies in Mumbai Website Security Audit Companies in Mumbai For more information regarding cyber security contact us:- @ ​www.cyberops.in For cyber security training and tutorials join Cyberops Labs by clicking ​here​.

More Related