In breve
Researchers at SANS ISC observed a phishing wave targeting customers of a major Belgian bank (Belfius). The email looks like a standard banking login prompt, but the malicious link uses an obfuscation trick: it is written as an IPv6...
Come funziona
Researchers at SANS ISC observed a phishing wave targeting customers of a major Belgian bank (Belfius). The email looks like a standard banking login prompt, but the malicious link uses an obfuscation trick: it is written as an IPv6...
Indicatori rossi
- URL uses an IP literal in square brackets rather than a bank domain. Sender urges login via link in email instead of typing the bank URL. Final destination is on a generic qzz.io subdomain mimicking bank login pages
Cosa fare
- 1Never click banking links from emails
- 2open the bank site manually. Report suspicious bank themed messages to your bank and block the sender. Enable hardware key or app based 2FA so a stolen password is not enough
Fonte
FAQ
eBanking Phishing Hides Behind IPv4 Mapped IPv6 Address (Belfius) e una truffa reale?
Si. Tratta messaggi, chiamate o richieste di pagamento come sospette finche non le verifichi da un canale ufficiale.
Quali sono i primi segnali?
URL uses an IP literal in square brackets rather than a bank domain. Sender urges login via link in email instead of typing the bank URL. Final destination is on a generic qzz.io subdomain mimicking bank login pages
Cosa devo fare subito?
Never click banking links from emails; open the bank site manually. Report suspicious bank themed messages to your bank and block the sender. Enable hardware key or app based 2FA so a stolen password is not enough
LegalAudit puo controllare il mio caso?
Si. Apri la chat gratis e incolla messaggio, link, mittente o dati di pagamento per un triage.