Categories: Ad Guardian PlusNews

WeTransfer Used in Malicious Spam Campaigns

Hackers abuse WeTransfer, the popular file-sharing service, to circumvent the defensive email gateways that should block spam messages with malicious URLs, according to Threat Post. The problem appears when the transfered file is an HTM or HTML file redirecting to a phishing landing pageIn order to abuse the service, a user inputs a “from” email address and a recipient email address and uploads a file. Then, the sender can customize a message that the recipient sees.

Jake Longden, a threat analyst for Cofense – a provider of human-driven phishing defense solutions worldwide, wrote that: ”The email body is a geniune notification from WeTransfer, which informs the victim that a file has been shared with them. The threat actor often writes a note stating that the file is an invoice. When the user clicks on the ’Get your files’ button in the message body, the user is redirected where the HTM or HTML file is hosted and thus downloaded by the unsuspecting victim. When the user opens the .html file, he or she is redirected to the main phishing page.

Then, the attack continues with victims asked to enter their Office365 credentials, in order to login and retrieve the file. The researcher added, recent campaigns have targeted Microsoft Services, but other brands have also been spoofed.

WeTransfer did not return the requests to comment for this article.

Laurentiu Titei

View Comments

Recent Posts

How to Fix “A Driver Can’t Load on This Device” Error in Windows

“A driver cannot load on this device” error may be an indication of hardware malfunction,…

4 hours ago

Fixed: Microsoft Compatibility Telemetry High CPU in Windows

Is your computer slow, lagging, or freezing? Or is the fan running at a high…

5 hours ago

Fixed: Ctrl+C and Ctrl+V Not Working in Windows 11/10

We can only imagine how annoying it may be for you to manually select, right-click,…

1 day ago

Best Data Backup Software for Windows 11

Imagine losing your irreplaceable photos, documents, financial records, or creative projects to hardware failure, cyberattacks,…

2 days ago

Best Free PC Cleaner and Optimizer for Windows 10, 11 in 2025

In this comprehensive overview, we delve into the best free PC cleaner and optimizer tools…

2 days ago

How to Activate and Use Windows Security on Windows 11 and 10

The 2025 Microsoft Vulnerabilities Report stated that the security risks for Windows systems reached a…

3 days ago