Contact Contact Us

Using Google Translate to Hide Phishing Sites

An ongoing phishing campaign is using Google Translate to hide the real phishing domain that is designed for stealing Google and Facebook login credentials. Instead of using a direct link to the phishing site, the threat actors pass the phishing link through Google Translate and use the newly generated Google Translate URL in phishing messages. When accessing the link, the phishing page appears legitimate as it is loaded through Google Translate. This technique is particularly effective on mobile platform where the compact layouts of email clients and web browsers tend to show the legitimate Google Translate domain without displaying the phishing URL.

[1] Phishing Attacks Against Facebook / Google via Google Translate

Ensign InfoSecurity Singapore
30A Kallang Place
Singapore 339213

Tel: +65 6788 2882
Fax: +65 6788 3883