Hackers are constantly evolving their tactics to steal your account credentials, but new threats have emerged that hide malicious code in plain sight within email messages. Security researchers warn Gmail and Outlook users to be vigilant for attacks from VIP Keylogger and 0bj3ctivityStealer malware.
These threats are not easily spotted, unlike phishing scams that rely on links or attachments. Instead, they use images to conceal malicious code, which can record keystrokes, exfiltrate credentials, and steal credit card data. The hackers used the same technique in both attacks, hiding their malicious code within images hosted on legitimate websites.
To mitigate these dangers, Google has introduced new protections for Gmail users, including AI-powered security features that identify malicious patterns more accurately. Outlook.com also offers premium security features for its subscribers, which include extra screening of attachments and links in messages.
If you’re using Gmail or Outlook, stay alert for suspicious emails posing as invoices, purchase orders, or requests for quotations. If your account is compromised, update your password and be cautious when clicking on links or opening attachments from unknown senders. Remember, your email account credentials are a prime target for hackers – stay vigilant to protect yourself against these hidden threats.
Source: https://www.forbes.com/sites/daveywinder/2025/01/19/critical-hidden-email-hack-warning-issued-for-gmail-and-outlook-users