Hotmail and Yahoo Mail are the latest email services to be targeted by a series of phishing attacks aimed at stealing user log-in information.
According to researchers over at internet security firm Trend Micro, a new wave of phishing attacks targeted Microsoft’s Hotmail and Yahoo’s email service.
The company believes that the attacks were a part of a larger campaign aimed at stealing user data and compromise computer systems. Trend Micro also revealed that attacks were similar to the ones on Gmail but it could not established that they were linked.
Hackers orchestrating the phishing attacks are using a combination of malicious file attachments and flaws that exist within the web based email service.
Trend Micro told V3 that the hackers were using cross-site scripting (CSS) flaws in both Hotmail and Yahoo Mail to gain access to user accounts. They were also emailing malware ridden Word documents as attachments to potential victims.
Microsoft on the other hand, informed that it had no knowledge of the attacks and said it was a common industry threat.
“Microsoft is not aware of any Hotmail customers being targeted by the specific phishing attacks that occurred earlier this week. However, phishing attacks and other forms of abuse are a persistent industry challenge." Microsoft safety services general manager John Scarrow said in a statement to V3.