top of page
OutSystems-business-transformation-with-gen-ai-ad-300x600.jpg
OutSystems-business-transformation-with-gen-ai-ad-728x90.jpg
TechNewsHub_Strip_v1.jpg

LATEST NEWS

Marijan Hassan - Tech Journalist

New cyberattack uses Google and WhatsApp to target Amazon users: Here's what you need to know

Cybersecurity researchers have uncovered a new and sneaky way that hackers are trying to steal people's personal information. This time, they're using trusted tools like Google Drawings and WhatsApp to carry out their attacks, making it harder for regular security systems to catch them.



How the Attack Works

Phishing Email: It all starts with an email that looks like it’s from Amazon. The email tells you to click on a link to verify your Amazon account, making it seem urgent and important.


Google Drawings Trick: Instead of the link leading directly to a suspicious site, it first takes you to a graphic hosted on Google Drawings. Because Google is a trusted site, most people won’t think twice about it, and security systems might not flag it as dangerous.


Hidden Links: The graphic on Google Drawings includes a hidden link that you might not notice right away. If you click on it, you're redirected through a couple of short links, one created using WhatsApp, before landing on what looks like an Amazon login page.


Fake Amazon Page: The page looks just like Amazon’s real login page, but it’s a fake. If you enter your information, the hackers steal it—this could include your Amazon password, credit card details, and other personal info.


To cover their tracks, the hackers send you to the real Amazon website after entering your information, making it seem like nothing was wrong. Plus, they make sure that the fake page won’t load again if you try to visit it from the same computer, so it’s harder to catch them.


Why This Is Dangerous

Hackers are getting smarter about hiding their tricks. By using trusted sites like Google and WhatsApp, they make it more difficult for you and security systems to notice anything suspicious. Since most people trust these services, they're more likely to fall for the scam.


What You Can Do to Stay Safe

Be Skeptical: If you get an email asking you to click a link or verify your account, take a moment to think before you act. Even if the email looks like it’s from a company you trust, it’s better to be safe.


Check URLs Carefully: Before you click on a link, hover over it to see where it’s really taking you. If the web address looks strange or doesn’t match the official site, don’t click on it.


Use Security Software: Make sure your computer has up-to-date security software that can help detect and block phishing attempts.


Report Suspicious Emails: If you get an email that seems fishy, report it to the company it’s pretending to be from. They can investigate and warn other users.


As hackers continue to find new ways to trick us, staying alert and informed is the best way to protect yourself from falling victim to these attacks.

Comments


wasabi.png
Gamma_300x600.jpg
paypal.png
bottom of page