14 DAY TRIAL // Several companies have implemented two-factor authentication over the past period, including Twitter and LinkedIn.
According to experts from Zscaler, cybercriminals are taking advantage of these announcements to increase the chances of success for their scams.
A perfect example is a recent spam campaign that’s designed to trick Yahoo users into handing over their authentication credentials by informing them of a new “account update.”
“You have 1 important mail alert! We strongly advise you should update your account and resolve the problem. Click here [link] to proceed. Failure to do this will lead to your account been suspended or de-activated,” the emails entitled “Last Warning! Update Now!” read.
Of course, the link doesn’t point to the legitimate Yahoo site, but to a webpage that’s designed to mimic the genuine Yahoo login page.
Users who enter their credentials on the bogus page are actually handing over their credentials to cybercriminals.
If you’re a victim of this scam, change your Yahoo password immediately. If you use the same one on multiple sites, change all your passwords.