Weekly Threat Report: July 29

In this week’s threat report, we uncover three alarming cyber threats you need to be aware of. Discover how attackers are using free website builders to craft deceptive phishing pages, how redirect tactics are leading users to dangerous malware, and the latest DocuSign phishing schemes designed to steal your credentials. Our report breaks down these threats and highlights how ConcealBrowse’s cutting-edge protection can keep you and your organization safe.

This site was detected by ConcealBrowse on July 26th, having first been seen by security vendors last year. There are currently 16 vendors flagging this page for phishing. ConcealBrowse intervened with a 29% risk assessment due to the detection of suspicious activity.

This site exploits a free website creation service to host a phishing page looking to steal email credentials. Website creation tools have become popular among threat actors, due to their ease of use and low-cost. An unsuspecting user recognizing the targeted brand in the domain name would enter their credentials and have them stolen by malicious actors. While in an isolated session, ConcealBrowse blocks keyboard input to keep users safe from suspicious sites.

An example of one of the redirects

This site was detected by ConcealBrowse on July 26th as part of a routine scan. It was initially detected by 11 vendors, and that number has not changed. ConcealBrowse intervened with a 10% risk assessment due to poor reputation.

This domain utilizes redirects to deliver malicious pages to the user. These pages vary in their contents, mainly having links to browser hijackers and other adware. They may also try to trick the user into believing that their machine is infected by using fake antivirus pop-ups and scans. ConcealBrowse’s intervention prevents the user from downloading anything from the redirected sites, ensuring that their device remains free of infection.

A user attempted to access this site on July 29th using ConcealBrowse. At present, 18 security vendors have categorized this domain as phishing, highlighting the potential threat it poses. ConcealBrowse identified the impersonation of the DocuSign brand on the site and assigned it a 14% risk score, indicating a moderate level of risk.

This phishing attempt likely came in the form of a fraudulent email informing the victim that there was a document that needed to be signed. These types of sites often fill in the victim’s email automatically, so a password is all that is required. This is done to make the login page appear more legitimate. ConcealBrowse’s intervention helps users recognize fraudulent pages, as well as blocking keyboard input to keep credentials safe from phishing sites.

Valuable Outcomes

As this recent threat reports exemplify, ConcealBrowse offers comprehensive protection against many sophisticated cyber threats. Our advanced threat detection capabilities have successfully flagged and quarantined malicious web pages, preventing users from falling victim to various cyber-attacks. Conceal remains dedicated to upholding the integrity of online interactions, constantly refining our detection algorithms and threat identification protocols to ensure proactive protection against emerging cyber threats. By integrating cutting-edge technology and a robust security infrastructure, we empower users to confidently navigate the digital landscape, knowing that their online activities are shielded from potential harm.

Join the Conceal Community and claim your FREE ConcealBrowse licenses!

Join the Conceal Community today and fortify your online security for free! Don't miss the chance to benefit from our advanced threat protection and stay one step ahead of cybercriminals. Experience peace of mind while browsing the internet, knowing that ConcealBrowse is your shield against the ever-evolving threat landscape. Take the proactive step towards a safer online experience – get your free ConcealBrowse license now and join a community committed to safeguarding your digital world.

ConcealBrowse is leveraged by teams across the world to combat weaponized URLs. The technology is constantly analyzing suspicious web artifacts to identify risks in the form of drive-by attacks, phishing portals, and other threats that materialize while browsing.