π―Basically, scammers are tricking YouTube creators into giving away their Google login through fake copyright notices.
What Happened
A new phishing campaign is targeting YouTube creators, using convincing fake copyright notices to steal Google logins. This scam not only compromises accounts but can also lead to the hijacking of entire YouTube channels. Attackers exploit creators' fears of losing their channels overnight by presenting a fake copyright strike notification that appears legitimate.
Who's Affected
This attack primarily targets YouTube creators, especially those who rely on their channels for income through ads and sponsorships. With the potential for significant financial loss, these creators are particularly vulnerable to such scams.
How the Scam Works
The phishing site, dmca-notification[.]info, mimics YouTube's interface, pulling in real data from creatorsβ channels to create a personalized scare page. This page displays a fake copyright complaint that includes the creator's profile picture, subscriber count, and video details, making it seem authentic. Victims are pressured into signing in with their Google accounts to resolve the complaint, leading to credential theft.
Signs of Infection
Victims may notice the following signs:
Receiving unexpected copyright
Being directed to
Urgent language urging
How to Protect Yourself
To safeguard against this phishing attack, YouTube creators should:
Identify
- 1.Verify copyright strikes directly in YouTube Studio, not through external links.
- 2.Be cautious of urgent requests for action, as legitimate processes do not rush users.
Protect
- 3.Check URLs carefully before entering login information.
- 4.If you suspect youβve been compromised, change your Google password immediately and review account activity.
Indicators of Compromise (IOCs)
- Primary Phishing Domain: dmca-notification[.]info
- Credential Harvesting Domain: blacklivesmattergood4[.]com
- Associated Infrastructure: dopozj[.]net, ec40pr[.]net, xddlov[.]net (all returned 502 errors at the time of capture)
This phishing scheme represents a significant threat to YouTube creators, emphasizing the need for constant vigilance and security awareness in the face of increasingly sophisticated scams.
π Pro insight: This phishing campaign exemplifies the evolution of scams, leveraging real-time personalization and urgency to exploit creators' fears.
