Breaking news today:
Recommendations:
User are advised to observe the following recommendation browsing the internet and downloading files:
• It is never safe to click on links from people or download files from sites you do not trust
• The top level domains ‘.ZIP’ and ‘.MOV’ are being leveraged by cybercriminals to trick users into accessing malicious content
• Two common file types seen online are ZIP archives and MPEG 4 videos, whose file names end in .zip (ZIP archive) or .mov (video file)
• Cybercriminals have created phishing websites, such as ‘microsoft-office[.]zip’, attempting to steal Microsoft Account credentials
What’s Happening:
Cybercriminals are utilizing these domains to host phishing and malicious content.
Cybersecurity researchers and IT admins have raised concerns over Google’s new ZIP and MOV Internet domains, warning that threat actors could use them for phishing attacks and malware delivery.
In some cases, cybercriminals already registered domains, such as ‘springbreak23[.]mov’ and ‘invoice-report-2023.zip’ to trick users into downloading malicious content.
References:
Some of Google’s new domain names could pose a serious security risk:
https://www.techradar.com/news/want-a-new-google-zip-domain-it-could-be-a-serious-security-risk Google’s new .zip and .mov domains are a security incident waiting to happen: https://www.xda-developers.com/google-zip-mov-domains-security/ The Real Risks in Google’s New .Zip and .Mov Domains
https://www.wired.com/story/google-zip-mov-domains-phishing-risks/
