HQ/EMEAFind out how we can help your business
Recent studies found that threat actors now utilise geotargeting tools to make attacks more customised and tailored against specific locations. One of the tools seen in these campaigns is the ‘Geo Targetly’ tool, which many businesses use in customising advertisements based on people’s geolocations.
The researchers explained that hackers use Geo Targetly to redirect users to customised and localised phishing websites since the platform can determine a user’s location without their knowledge.
Geotargeting tools like Geo Targetly can help hackers amplify their attacks.
Assessments about the campaign reveal that the hackers use Geo Targetly to create phishing links that could take users from specific locations to a fake landing page impersonating authentic ones.
Since the tool makes the process more realistic, the chances are high that users will be baited and tricked into believing that a landing page is authentic, leading to more risks, such as fraud, credential theft, or monetary loss.
What makes the campaign more believable to targets is how each website and its content are relevant to a user’s region and the language they use.
Furthermore, reports state that the campaign can execute attacks against multiple users from numerous regions – as much the hackers like. Researchers refer to the method as “spray-and-pray,” wherein the hackers send thousands of malicious emails to a massive number of email addresses to wait and see which one would bite the bait.
As noted by separate security analysts, geotargeting tools were not often used in phishing attacks before they became widespread. In fact, this discovery is the first time researchers found Geo Targetly used maliciously.
Researchers also underline that Geo Targetly being used in phishing campaigns is not a flaw in the service that the company must address. Nevertheless, the company has confirmed that its service has been spotted being used to make phishing attacks more targeted.
Such campaigns make cybersecurity researchers emphasise their warnings to people about closely reviewing all email messages they receive, as hackers are becoming cleverer in their attack methods.
