Media and Entertainment

Using Google Translate to Hide Phishing Sites

4 - 12 February 2019

An ongoing phishing campaign is using Google Translate to hide the real phishing domain that is designed for stealing Google and Facebook login credentials.
An ongoing phishing campaign is using Google Translate to hide the real phishing domain that is designed for stealing Google and Facebook login credentials. Instead of using a direct link to the phishing site, the threat actors pass the phishing link through Google Translate and use the newly generated Google Translate URL in phishing messages. When accessing the link, the phishing page appears legitimate as it is loaded through Google Translate. This technique is particularly effective on mobile platform where the compact layouts of email clients and web browsers tend to show the legitimate Google Translate domain without displaying the phishing URL. 

References:
[1] Phishing Attacks Against Facebook / Google via Google Translate
 
 
 
 
 
 
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Systems Integration

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence