We have been getting contact form submissions that are clearly attempting to get the reader to click on a link using social engineering. The most common among those are messages with a “infringing on copyright-protected images” theme and a link going to storage.googleapis.com/XXXXXX.appspot.com/. With the latest being from a seemingly legitimate email address from intuit.com of all places. Even though we don’t use any Intuit images.
We also have a security plugin which helps with bots and covers Gravity Forms.
My question is, is there any existing way to remove URL’s altogether? Or maybe hold submissions that contain a URL?
I need a way to combat these social engineering attempts that contain suspicious links. I wanted to ask before attempting to hook into the email notifications and remove URL’s before sending to an office admin that will read it and potentially click on a malicious link.
Thanks,
Brennan Goewert | Information Systems Technician