Cybercriminals work constantly to exploit vulnerabilities and find new ways to attack your business. Now, they’ve developed a new and sophisticated ability to compromise your network.

Image recognition software has become quite advanced. If a hacker is intent on creating fake landing and login pages to spoof a company, he must be able to bypass AV software that will recognize a malicious website. Even small details, like a background image, must be exactly right or the software will signal a problem.
A new method of getting around this AV software involves the hacker building two different landing pages: one for the AV software and one for the user. A page with proper background imaging, albeit with inverted colors, is presented for the software, which primarily looks for shapes and not colors. Any site user, however, would detect the flaw in the colors and be alerted. Site users, then, are directed to a different page with the recognizable image.

According to WMC Global, a cybersecurity enterprise with a range of security solutions, this new method is a threat to Office 365 users:
"Our team reviewed other campaigns deployed by this threat actor, discovering that the individual was using the same inversion technique on the newer Office 365 background."

If you’re one of the millions of Office 365 users, you would be wise to note the URL of the page to which you are navigating. Using your login credentials on a fake page could have devastating consequences, allowing hackers into your email and other important applications.

The Office 365 example is a worrisome one, as there are many, many users worldwide, but hackers around the world are undoubtedly employing this same technique to gain credentials. Banking, online transactions, and healthcare information are other obvious targets, and users must be vigilant.

At SIP Oasis, we offer advanced security training for companies as a part of our security package. Your network is only as secure as your least careful employee, and anything you can do to mitigate your risk helps. Give us a call today to find out how our expert team can help! (205) 623-1200