Snynet Solution Logo
MON - SUN: 10 AM - 6 PM
+60 11 5624 8319


These phishing scams impersonate popular shipping companies

Image Description

Security researchers at Armorblox have discovered two new phishing campaigns which impersonate popular shipping companies in an effort to harvest victim's corporate email credentials.

In the first campaign, the attackers impersonated FedEx by sending out emails with the subject line “You have a new FedEx sent to you”. These emails contain some information about the document in order to make it appear more legitimate along with links to view it.

Clicking on the link inside the email takes victims to a file hosted on Quip which is an additive tool for Salesforce that provides documents, spreadsheets, slides and chat services. However, as the service has a free version, it was likely what the attackers behind the campaign used to host their landing page.

Once a user clicks on the link on the landing page hosted on Quip, it takes them to the final phishing page that resembles the Microsoft login portal and here the attackers are able to harvest user's email credentials. It's worth noting that this final page is hosted on Google Firebase in an effort to fool people as well as email security technologies into thinking the link is legitimate.

DHL Express phishing attack

In the second phishing campaign observed by the Armorblox threat research team, cybercriminals used an email impersonating DHL Express to once again trick users into giving up their credentials.

This email, with the subject line “Your parcel has arrived”, includes the victim's email address at the end of the title and explains that their parcel arrived at their local post office but couldn't be delivered due to incorrect delivery details. It also has shipping documents attached to it that victims will need to check if they want to receive their delivery.

While labeled as a Microsoft Office document, the email attachment is actually an HTML file that previews a spreadsheet when opened. However, the preview is layered over with a login request box that impersonates Adobe. While it could be possible that the attackers were trying to phish for Adobe credentials, it's more likely that they were trying to get victims' work email credentials instead.

To prevent falling victim to these and other similar phishing campaigns, Armorblox recommends that organizations augment their native email security with additional controls, watch out for social engineering cues and use two-factor authentication as well as a password manager.


24 Feb 2021



Other Blog

  • Many Americans aren't aware they're being tracked with facial recognition while shopping

    Retailers in the US have begun using facial recognition technology for fraud and theft detection without letting customers know.

    Read More
  • Dropbox is making big moves in the video space

    Dropbox is making it even easier for distributed teams to work with video files with the release of its new video-focused online collaboration tool.

    Dropbox Replay, which was first announced back in September, is now officially in open beta and the tool allows users to connect with the video storage and sharing workflows that are already taking place inside its cloud storage service.

    Not only can users add videos from Dropbox or their local storage and view them in a professional-grade player with high-quality playback but they can also effortlessly share video for review with teammates and clients even if they don't have a Dropbox account. As Dropbox Replay is a collaboration tool first and foremost, users can  leave frame-accurate comments and annotations so others know exactly what they're talking about in a video.

    Since watching content using video conferencing software isn't the best experience due to choppy playback, Dropbox Replay also includes a live review feature in which high-definition playback is synchronized so everyone is watching the same part of a video at the exact same time.

    Dropbox Replay integrations

    When using Dropbox Replay for video editing, comments stay with each video version so that editors can easily go back and reference feedback from their teammates at a later time.

    Speaking of video editing, Dropbox has designed its new video collaboration tool in such a way that it works with the tools you already use through both direct partnerships and integrations with Adobe, Blackmagic Design and other video editing software providers.

    For instance, the Dropbox Replay extension for Adobe Premiere Pro allows users to instantly view and act on feedback from Replay directly from within Adobe's software. Users can also important Replay comments onto their Premiere Pro timeline with a single click and then export new versions to Replay without leaving the program.

    Dropbox is also developing an integration with Blackmagic Design's DaVinci Resolve that will allow users to sync frame accurate feedback, comments, markers and annotations from Dropbox Replay automatically to their DaVinci Resolve timeline. Meanwhile Dropbox Replay presets will allow them to set up rendering quickly and easily.

    Finally, the Dropbox Replay integration with LumaFusion lets users collaborate with other creators directly inside of LumaFusion while Dropbox's WeVideo integration allows teams to create and edit videos in WeVideo and export directly to Replay.

    Users interested in checking out Dropbox Replay can sign up here to join the beta and we'll likely hear more from Dropbox once we get closer to the official launch of its new video collaboration tool.

    Read More
  • NBN speeds: everything you need to know to choose the best Australian NBN plan

    We break down the seven fibre broadband speed tiers to help you make an educated decision as to which suits your household best.

    Read More
  • Laptops, desktops shortage set to continue for the foreseeable future

    This year's boom in PC sales means finding a new laptop or desktop will remain difficult in 2021.

    Read More

Find Out More About Us

Want to hire best people for your project? Look no further you came to the right place!

Contact Us