Kaspersky Warns of Evolving Phishing Attacks Targeting Middle East Users
KHADAMATY–NEW
A new review by Kaspersky highlights how cybercriminals are reviving and refining phishing techniques, combining familiar methods with advanced tactics to target both individuals and organizations. The analysis reveals a resurgence of calendar-based phishing, voice message deception, and increasingly sophisticated attempts to bypass multi-factor authentication (MFA), underscoring the growing need for user awareness and advanced email security solutions
One of the notable trends is the return of calendar-based phishing, now adapted for B2B environments. Attackers send emails containing calendar invitations with malicious links hidden in event descriptions. Once added to a user’s calendar, reminders prompt victims to click links leading to fake login pages, often impersonating trusted platforms such as Microsoft. This method is particularly effective in corporate settings and aligns closely with the workflow patterns common across Middle East organizations
Another emerging tactic involves voice message phishing, where attackers send minimalist emails claiming to contain voicemail notifications. These messages redirect users through multiple CAPTCHA steps to evade automated security tools, eventually leading to fraudulent login pages designed to harvest credentials. This approach exploits the region’s familiarity with voice messaging while increasing the likelihood that the victim is a real user rather than a bot
Kaspersky also warns of MFA bypass attacks using fake cloud service logins. In these campaigns, emails disguised as support notifications redirect users to lookalike domains that interact with legitimate cloud services via APIs. Victims are prompted to enter passwords and one-time passcodes, allowing attackers to gain full account access despite MFA protections
“With phishing schemes becoming more deceptive, users must remain cautious and verify links before entering credentials,” said Roman Dedenok, Anti-Spam Expert at Kaspersky. He emphasized that organizations should invest in regular cybersecurity training and deploy advanced email security solutions capable of detecting fraudulent domains and API-driven attacks in real time
