Threat Alert: Phishing Attacks Use CAPTCHA to Increase Trust 

• Cybercriminals have launched a series of phishing attacks imitating a legitimate company. The lures used in these attacks state that the recipient has violated the imitated company’s copyright.  
• The phishing lures threaten legal action and include a link allegedly leading to instances of copyright violation. 
• Following the links leads to a lookalike Microsoft Azure login page containing a CAPTCHA field, which is intended to increase the legitimacy of the page. 
• Completing the CAPTCHA leads to an additional download page, which ultimately leads to the installation of malicious software (malware) on the user’s device.  

Key Actions (at Work and at Home) 

• Be aware of potential lookalike web pages. When downloading software from the internet, always look for signs of potential web page impersonation. Be sure to check the URL carefully. Some imposter sites use URLs that very closely resemble the legitimate URL.  
• Remember cybercriminals take advantage of strong emotions. An email threatening legal action because of alleged copyright infringement can be extremely stressful. Keep in mind cybercriminals seek to capitalize on moments of anxiety and the difficulty in thinking clearly in such situations.  
• Report ANY suspicious emails using the Phish Alarm button  Remember: Our organization occasionally sends phishing simulations.