A new sophisticated phishing campaign has been discovered, targeting Office 365 and utilizing recognized brand names to bypass security filters. The campaign aims to trick victims into handing over Microsoft Office 365 credentials to gain access to corporate networks. Check Point Software published a report detailing the attacks, which largely
According to an analysis released by Group-IB on Thursday, a threat actor group called PerSwaysion has attacked Microsoft services, compromising at least 150 executives in a targeted phishing campaign. The attacks were effective in gathering the Office 365 credentials of the executives since mid-2019. The campaign’s success was attributed to
The Department of Homeland Security CISA has issued an analysis highlighting observed security risks resulting from the use of third parties to move organizations to the Microsoft Office 365 Cloud.
A new study by Barracuda Networks highlights the “startling rise” of account takeover (ATO) attacks targeting Microsoft Office 365 accounts. In March of this year, 29% of companies had Microsoft 365 accounts compromised, allowing attackers to send over 1.5 million spam messages from such accounts. Threat actors are using different