Google reCAPTCHA used by Phishing Attackers


Thousands of phishing emails threaten Microsoft users to obtain their Office 365 credentials during an active attack. The attackers add to the campaign an air of authenticity by the use of a bogus Google reCAPTCHA scheme and top domain landing pages which include symbols of victims’ organizations. Though more than 2,500 phishing emails connected with the campaign have been blocked by the organization. Security company Zscaler’s Threat Analysis Unit, ThreatLabZ, has noticed that since December 2020 phishing is increasing, with mostly senior staff working in the banking industry being targeted. 

Read more…