Steve May 22, 2020
fake-‘security-update’-email-targets-logmein-users

If you use the remote access service LogMeIn, keep an eye out for a fake email claiming that a security update has been released.

The email is a phishing scam designed to steal your LogMeIn account access credentials.

The email, which features the LogMeIn logo, has the subject line “A New Update Has Been Released”.

The body of the email says in part:

A security update has been released. In order to improve the confidence of our customers on security of our services, LogMeIn team has released today a new security update.

The scam email claims that the security update is to provide a fix for a “zero-day vulnerability in both LogMeIn Central and LogMeIn Pro”. It urges you to click a link to apply the update and warns that your subscription will be suspended if you don’t comply.

If you do click, you will be taken to a fake login page that has been built to mirror the genuine LogMeIn website. The information you supply can be collected by criminals and used to access your LogMeIn account.

A warning about the attack on the LogMeIn blog notes:

Please take note this is NOT a LogMeIn email and did NOT come from someone at LogMeIn.  You will never receive an email asking you to apply an update.

If you received this email and clicked on the link, we recommend immediately changing your LogMeIn password and enabling two-factor authentication on your account, as well as your users’ accounts.

LogMeIn Assures Customers That LastPass Data Not Impacted

LogMeIn is the parent company of the popular password manager LastPass. This has apparently prompted some commentators to suggest that the scammers may have been attempting to access LastPass customer data via this LogMeIn phishing attack.

However, the company says that this concern is unwarranted, noting:

While LastPass offers single-sign-on functionality in its business solution, this functionality is not available in LogMeIn Pro or Central, and therefore does not provide access to any data in LastPass.

COVID-19 Scammers Targeting Remote Workers

Due to the COVID-19 pandemic, many more people around the world are working remotely. Remote access and collaborative services such as LogMeIn have seen a significant increase in usage. Predictably, criminals have been quick to exploit this via phishing scams and other attacks aimed at people working remotely.

During these challenging times, we need to remain especially vigilant.

Related

Read More