Microsoft has warned that Office 365 customers are receiving phishing emails that aim to trick unsuspecting users into giving OAuth permissions to an app that allows attackers to read and write emails. The OAuth phishing emails were delivered to hundreds of Office 365 customers, warned the Microsoft Security Intelligence team.
The US FBI released a Private Industry Notification (PIN) last week claiming that cybercriminals are exploiting email forwarding rules to maintain anonymity and hide their presence on hacked email accounts. The PIN was made public yesterday and contains valuable information about how the technique is being actively used in recent
Cybercriminals have launched a new campaign leveraging legitimate Google Drive features to trick unsuspecting users into opening malicious links. The feature allows the attackers to create push notifications or emails that ask the recipient to share a Google Doc. This then lets the cybercriminals to distribute malicious links via a