Security News > 2020 > March > Why Microsoft's Office 365 has become an all-access pass for phishers to exploit
With so many people and organizations using Microsoft Office 365, phishers who exploit this brand can target a vast amount of people as a way to steal their account credentials, as described by Vade Secure.
Phishing attacks that exploit Office 365 come in different varieties, according to Adrien Gendre, chief solutions architect at Vade Secure.
In some cases, hackers copy the CSS from the real Office 365 login page and use it to build their phishing page.
"Overall, the sophistication of these attacks is growing, with many Office 365 phishing pages being virtually indistinguishable from the real thing," Gendre said.
The overall goal of these type of phishing attacks is to steal Office 365 credentials, according to Gendre.
News URL
Related news
- Microsoft Office 2024 now available for Windows and macOS users (source)
- Microsoft creates fake Azure tenants to pull phishers into honeypots (source)
- Microsoft SharePoint RCE flaw exploits in the wild – you've had 3 months to patch (source)
- VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware (source)