Security News > 2020 > December > Microsoft Office 365 Credentials Under Attack By Fax ‘Alert’ Emails
The attackers behind the attack leveraged hundreds of compromised, legitimate email accounts in order to target organizations with emails, which pretended to be document delivery notifications.
In reality, the phishing attack stole victims' Office 365 credentials.
Microsoft Office 365 users have faced several sophisticated phishing attacks and scams over the past few months.
In reality, the attack aimed to steal Office 365 recipients' login credentials.
Finally, earlier this month, a spearphishing attack spoofed Microsoft.com to target 200 million Microsoft Office 365 users in a number of key vertical markets, including financial services, healthcare, manufacturing and utility providers.
News URL
https://threatpost.com/microsoft-office-365-credentials-attack-fax/162232/
Related news
- Microsoft Office LTSC 2024 preview available for Windows, Mac (source)
- Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw (source)
- Microsoft warns Gmail blocks some Outlook email as spam, shares fix (source)
- Microsoft still unsure how hackers stole MSA key in 2023 Exchange attack (source)
- Microsoft fixes two Windows zero-days exploited in malware attacks (source)
- Microsoft breach allowed Russian spies to steal emails from US government (source)
- Roku warns 576,000 accounts hacked in new credential stuffing attacks (source)
- Week in review: Palo Alto Networks firewalls under attack, Microsoft patches two exploited zero-days (source)
- Microsoft will limit Exchange Online bulk emails to fight spam (source)
- Okta warns of "unprecedented" credential stuffing attacks on customers (source)