image credit: Adobe Stock

Phishers go after business email credentials by impersonating U.S. DOL

Phishers are trying to harvest credentials for Office 365 or other business email accounts by impersonating the U.S. Department of Labor (DOL), Inky‘s researchers have warned.

The ploy? The DOL is ostensibly inviting companies to submit “proposals from qualified contractors for ongoing government projects”, and helpfully explaining the various steps of the process:

By clicking on the “BID” button in the PDF, potential victims are taken to a fake DOL procurement portal that is an identical copy of the real DOL website.

Read More on Help Net Security