Application Security

Phishing scam using Conviso’s name: don’t fall for it!

In the past few days, a few customers have reported to us that they have been receiving phishing emails from scammers using Conviso’s name. In this type of fraud, the scammer tries to obtain a user’s personal and financial data, through the combined use of technical means and social engineering.

From what we have seen, in this particular case, the scammers’ strategy is to try to capture the developers’ passwords to send an email structurally similar to ours and offer a training. In the message, a malicious link is inserted as a bait, and by clicking on it, the victim’s data is dangerously exposed.

Ironic as it is that criminals have chosen an application security company to carry out their scams, it is an important reminder that no company is immune from similar attacks.

Phishing is one of the most common scams in the world

Phishing is a social engineering resource that creates “baits” to attract potential victims. If you receive one of these emails misusing the name Conviso, be sure to notify us about it by writing an email to security@convisoappsec.com.

About author

Articles

Communication Analyst at Conviso. With a degree in Journalism, she has 10 years of experience as a content strategist, as well as as a content editor.
Related posts
Application Security

Operations according to SAMM: Operational Management in Application Security

In this article, we will continue the series of publications on the OWASP SAMM (Software Assurance…
Read more
Application Security

An Application Security Program: AppSec Journey

First and foremost, Application Security (AppSec) must be integrated into every step of the…
Read more
Application Security

Operations according to SAMM: Environment Management and Application Security

This article is part of a series of publications based on the OWASP SAMM project, if you are…
Read more

Deixe um comentário