Security News > 2020 > December > Microsoft Office 365 Credentials Under Attack By Fax ‘Alert’ Emails
The attackers behind the attack leveraged hundreds of compromised, legitimate email accounts in order to target organizations with emails, which pretended to be document delivery notifications.
In reality, the phishing attack stole victims' Office 365 credentials.
Microsoft Office 365 users have faced several sophisticated phishing attacks and scams over the past few months.
In reality, the attack aimed to steal Office 365 recipients' login credentials.
Finally, earlier this month, a spearphishing attack spoofed Microsoft.com to target 200 million Microsoft Office 365 users in a number of key vertical markets, including financial services, healthcare, manufacturing and utility providers.
News URL
https://threatpost.com/microsoft-office-365-credentials-attack-fax/162232/
Related news
- Microsoft fixes Office 365 apps crashing on Windows Server systems (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Microsoft 365 apps crash on Windows Server after Office update (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
- Microsoft fixes under-attack privilege-escalation holes in Hyper-V (source)
- Microsoft ends support for Office apps on Windows 10 in October (source)
- Microsoft shares temp fix for Outlook crashing when writing emails (source)
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- Week in review: 48k Fortinet firewalls open to attack, attackers “vishing” orgs via Microsoft Teams (source)
- Clone2Leak attacks exploit Git flaws to steal credentials (source)