As we navigate the digital age, our reliance on email communication continues to grow, and with it comes the sophistication of cyber threats. Gmail and Outlook users, in particular, need to be on high alert as new hidden email dangers have been confirmed that could put your personal information at risk.
Email has become a primary target for cybercriminals, and the latest threat intelligence suggests that the dangers are becoming more covert and harder to detect.
Security researchers have recently issued warnings about two particularly insidious types of malware: VIP Keylogger and 0bj3ctivityStealer. These threats are not your typical phishing scams that can be easily spotted as they are ingeniously hidden within the very emails we receive, often masquerading as harmless images.
VIP Keylogger is designed to record your keystrokes, capturing everything from passwords to sensitive clipboard data.
Meanwhile, 0bj3ctivityStealer, as its name implies, is an information thief that targets account credentials and credit card information.
Both of these threats use the cunning tactic of embedding malicious code within images that are then hosted on legitimate websites. This approach increases the likelihood of the malware bypassing network security measures that typically rely on reputation checks.
The HP Wolf security threat insights report highlighted these large malware campaigns, where emails disguised as invoices or purchase orders contained ‘multiple malicious images.’ One such image was viewed a staggering 29,000 times.
Similarly, 0bj3ctivityStealer was distributed via archive files that appeared to be legitimate requests for quotations. Once activated, these files would download an image from a remote server, unleashing the malicious code onto the unsuspecting user’s device.
Fortunately, Google and Microsoft are not sitting idly by as these threats evolve. Gmail’s senior director of product management, Andy Wen, revealed that Google has developed groundbreaking AI models to strengthen Gmail’s cyber defences.
These models have reportedly improved the detection of phishing, malware, and spam, blocking 20% more spam than previous protections by identifying malicious patterns with greater accuracy.
Another AI model also ‘acts like a supervisor for our existing AI defences by instantly evaluating hundreds of threat signals when a risky message is flagged and deploying the appropriate protection,’ said Wen.
Microsoft has also stepped up its game, ensuring all Outlook.com users benefit from spam and malware filtering. Moreover, Microsoft 365 Family and Microsoft 365 Personal subscribers will also get additional screening of attachments and links in messages, with premium security features automatically activated for email accounts ending in @outlook.com, @hotmail.com, @live.com, and @msn.com.
As users, we play a critical role in our own cybersecurity which is why it is essential to stay informed about the latest threats and adopt a proactive approach to online safety.
Regularly updating your software, using strong, unique passwords, and being cautious with email attachments and links you click on are just a few of the steps you could take to protect yourself.
We encourage our readers to share their experiences and tips for staying safe online. Have you encountered any suspicious emails lately? How do you ensure your digital security?
Join the conversation in the comments below and help us build a community of cyber-aware individuals. Together, we can stay one step ahead of the cybercriminals.
Also read: Watch out! Scam emails posing as Centrelink targets Aussies
