HQ/EMEAFind out how we can help your business
Threat actors have reportedly been utilising the ClickFunnels funnel builder service to bypass security detections and redirect site visitors to malicious websites. The online marketing service caters to business owners that want to generate customer leads and sell their products.
According to reports, the funnel builder’s email marketing feature and capabilities of creating website pages have been abused by threat actors to establish malicious landing pages where they can perform credential-harvesting attacks on targets.
ClickFunnels is one of the many trusted platforms leveraged for phishing campaigns.
Many researchers refer to this issue as the ‘Static Expressway’ phishing attack, where threat actors leverage legitimate tools and sites to host malicious pages and trick people. This attack technique denotes that since people trust legitimate tools, it would be easier for scammers to utilise them in hiding and conducting malicious activities.
Furthermore, as threat actors use ClickFunnels’ email marketing feature to send malicious emails to targets, they can easily bypass threat protection solutions employed by email platforms. Security researchers describe the technique as a powerful way for fraudulent actors to get into people’s email inboxes without being flagged as malicious.
Also, security services cannot instantly ban widely used online platforms such as ClickFunnels; hence scammers would have more freedom to execute their phishing campaigns and reach people’s inboxes.
Because of these potential threats that effectively bypass threat detections, security experts recommend that users manually review the attached weblinks on emails they receive before clicking on them.
It is also hoped that the root cause of this issue will be disrupted since it is a clear working technique in favour of threat actors. Despite email platforms’ continued efforts to stop malicious and spam emails from reaching people’s inboxes, external tools are becoming an effective path for cyberattacks to come through and get around them.
While a solution for the issue is yet to be released, people are advised to learn how to recognise phishing attempts, enable anti-virus tools in their computers, and implement multi-factor authentication (MFA) on their online accounts.
