"If a person dies, their immediate family may not know how to get into the deceased's password manager, and may contact the vendor asking for access. Scammers suspected of being part of the CryptoChameleon cyber criminal group are trying to take advantage of that by sending oddly-worded phishing messages to LastPass customers. The goal, presumably, is not only to get LastPass login credentials, but also to access the user's cryptocurrency wallet and drain its contents."
"It also includes a link to cancel the request, which in fact directs the intended victim to an attacker-controlled URL where the victim is asked to enter their LastPass master password, in an attempt to harvest their credentials. The email concludes with the statement "Your security is our top priority. Never share your master password with anyone - including us!""
Phishing emails spoofing the LastPass domain use a deceptive 'legacy request' about a uploaded death certificate to trick recipients. The messages claim a support case was opened and include fabricated agent details and a cancel-request link. The cancel link directs victims to an attacker-controlled webpage that prompts for the LastPass master password, enabling credential harvesting. Scammers suspected to belong to the CryptoChameleon group aim to use stolen credentials to access and drain cryptocurrency wallets. LastPass issued a warning to customers after spotting messages that spoof the company and urge recipients to reply or click the malicious link.
Read at Computerworld
Unable to calculate read time
Collection
[
|
...
]