Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
Robinhood confirmed that the suspicious messages sent from noreply@robinhood.com were a phishing attempt.
She asked for the message, whose topic was “registration of the last entry to Rubenhud”, registration of the last entry to Rubenhud, Albinhud”, registration of the entry. The company’s support account is set on X that the balance of customers and their data will be harmed.
رسالة تصديق عرض المسادقة روبنهود
Facebook page passed SPF, DKIM and DMARC tests. من بنية روبنهود the infrastructure itself.
The attackers injected HTML into the text of the legitimate message, where the “revision of the activity” button was included and the activity was linked to the domain named tinzio.net via googletagmanager.com.
David Schwartz, honorary technical director at Rebel, also mentioned this campaignand pointed out that the messages may actually come from the private electronic mail system of the country.
David Schwartz warned, saying that he is not sure exactly what is happening, but it seems that these messages have somehow been injected into the structure of electronic intercoms.
تدادول ساهم روبنهود (HOOD) near $84.71 on Monday, up 1.40% up 1.40%, recorded pre-opening losses of up to 0.3% despite the phishing incident that took place in the evening.
What should the employees of Rubenhud do
The customer support service advises affected customers to contact support via the app or the electronic app instead of clicking on any links.
The medium encouraged everyone who interacted with the message to change the password and update the feature Binary Authentication (2FA)and review the latest hardware activity recently.
The pattern refers to attacks in which the criteria of correctness are passed even with the conversion of the content of the correctness to the malicious.
The Robin Hood platform did not explain how the attackers were able to access the account creation process. He also did not mention if other employees had received similar messages.