Stu Sjouwerman
2024-11-05 14:13:00
blog.knowbe4.com
Attackers are abusing Eventbrite’s scheduling platform to send phishing emails, according to researchers at Perception Point. These attacks increased by 900% between July and October 2024.
“Perception Point researchers observed phishing emails delivered via ‘noreply@events.eventbrite[.]com,’” the researchers write.
“Despite being presented as legitimate events created on the Eventbrite platform, attackers use these messages to impersonate known brands like NLB, DHL, EnergyAustralia, and Qatar Post.
Each email urges the recipient to take action: reset your PIN code; verify your delivery address; pay for an outstanding bill; pay for a package. These time-bound requests employ a social engineering tactic threat actors use to prompt the target to act fast.”
The attackers set up events in Eventbrite, and then send invitations with embedded phishing links. The emails are more likely to bypass security filters since they’re sent from a legitimate service.
“Once the target clicks on the phishing link, they are redirected to a phishing page,” Perception Point says. “We found examples spoofing Qantas airline, Brobizz toll collection, web hosting platform One(.)com, European financial institution NLB, and many more. Designed to look like legitimate websites, targets are asked for personal information, like their login credentials, tax identification numbers, phone numbers, credit card details, and more.”
The attacker can fully customize the appearance of the email to make it look like a convincing notification from the spoofed brand.
“Once the attacker creates an event, they can then create emails from within the Eventbrite platform to be sent to attendees,” the researchers write. “These emails can include text, images, and links, all of which are prime opportunities for attackers to smatter in malicious content. “The attacker then enters their list of targets (or ‘attendees’) and sends them the invite email. Once sent, the target receives an email from ‘noreply@events.eventbrite[.]com,’ containing all of the malicious details the attacker included.”
KnowBe4 empowers your workforce to make smarter security decisions every day. Over 70,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.
Perception Point has the story.
Support Techcratic
If you find value in Techcratic’s insights and articles, consider supporting us with Bitcoin. Your support helps me, as a solo operator, continue delivering high-quality content while managing all the technical aspects, from server maintenance to blog writing, future updates, and improvements. Support Innovation! Thank you.
Bitcoin Address:
bc1qlszw7elx2qahjwvaryh0tkgg8y68enw30gpvge
Please verify this address before sending funds.
Bitcoin QR Code
Simply scan the QR code below to support Techcratic.
Please read the Privacy and Security Disclaimer on how Techcratic handles your support.
Disclaimer: As an Amazon Associate, Techcratic may earn from qualifying purchases.