The alert has now been given by the agency’s security experts Kaspersky. At issue is the imitation of various google services like the YouTube and other platforms to try to “withdraw” data from unsuspecting users in the face of new phishing tactics.
In 2023 this is the technique that increases the most. As the agency in question advances, the experts witnessed a 189% increase in attempts worldwide. This is compared to December 2022, with the trend set to continue into February.
Google services are the perfect “excuse” for bad guys
Incidentally, such phishing pages are designed to lure unsuspecting users into providing their login credentials. That is, allowing attackers to access multiple users and accounts within a company’s ecosystem.
Google’s video hosting platform YouTube is a particular target for offenders as they can use it to quickly achieve their goals.
It was here that the agency observed a fraudulent scheme. Occasion when attackers gain access to a popular youtuber’s account, change the avatar’s background and profile, and then start streaming their own video.
YouTube has been the most targeted to try to deceive users
By the way, one of these videos, dedicated to cryptocurrencies and existing exploits with Elon Musk, was used to persuade viewers to follow a QR code shown on the screen.
Now, one of the links led to a fraudulent resource that allegedly hosted a cryptocurrency raffle. In practice, putting users’ money and personal data at risk.
That said, to stay protected against such threats, you can follow these practices:
Use strong and unique passwords. Create strong, unique passwords for each of your accounts, and avoid using the same password for multiple accounts. Use a combination of uppercase and lowercase letters, numbers and symbols to create a password that is difficult to guess.
Establish two-factor authentication. Two-factor authentication adds an extra layer of security to your accounts by requiring a second form of identification, such as a code sent to your phone or an authentication app, in addition to your password.
Be careful with suspicious emails and messages. Do not click on links or download attachments from unknown senders, and beware of messages that ask for your login credentials or personal information.
Check the authenticity of the sources. Check the authenticity of websites and sources before clicking on links or entering any personal information. Be wary of suspicious looking websites or unknown domains.
Aroged editors recommend: