Phishing Campaign Uses Long URL

A new phishing campaign sends emails pretending to come from your mail domain’s support department, claiming the user’s email has been blacklisted and requests the user log in to verify the account. If the user clicks on the embedded link, a landing page will appear to enter credentials. What is interesting – and hopefully obvious – about this suspicious scam is the use of about 1,000 characters in the URL link. There is speculation that the reasoning for the long URLs is an effort to hide information in the link. The NJCCIC strongly recommends never opening attachments or using links provided in unsolicited emails to visit websites requiring the input of account credentials. Users who receive unexpected or unsolicited requests from known senders inviting them to click on a link or open an attachment should always verify the sender via another means of communication before taking any action. We recommend reviewing Bleeping Computer’s blog post for more details about this phishing campaign.

AlertNJCCICphishing, Campaign