Security News > 2021 > March > Microsoft Office 365 still the top target among phishing attacks
Most of the recent credential phishing attacks seen by Menlo Security served phony Outlook and Office 365 login pages.
In its report, the Menlo Tabs team said it discovered a rise in credential phishing attacks over the past month.
The firm said it also found credential phishing attacks spoofing cryptocurrency wallets and popular software services from countries like South Korea.
The bulk of credential phishing attacks observed by Menlo Labs were trying to hoodwink users with phony login pages for Outlook and Office 365 login pages.
Another tactic seen in Office 365-related phishing campaigns appended the recipient's email address to the URL. In this instance, the path for the phishing page gets generated dynamically, while the user's email address is automatically filled in.
"With free services like Let's Encrypt, it is becoming increasingly easier for attackers to host phishing sites behind SSL with a relatively short TTL for maximum hit rate. Increasing cybersecurity awareness through training and education initiatives is often helpful in reducing the impact of credential phishing attacks, but corporate users should be cautious when a site presents a form that asks for personal/sensitive information."
News URL
Related news
- New Phishing Attack Uses Clever Microsoft Office Trick to Deploy NetSupport RAT (source)
- Microsoft Office LTSC 2024 preview available for Windows, Mac (source)
- Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw (source)
- DarkGate Malware Exploited Recently Patched Microsoft Flaw in Zero-Day Attack (source)
- Microsoft announces Office LTSC 2024 preview starting next month (source)
- Hackers Exploiting Popular Document Publishing Sites for Phishing Attacks (source)
- New StrelaStealer Phishing Attacks Hit Over 100 Organizations in E.U. and U.S. (source)
- Iran-Linked MuddyWater Deploys Atera for Surveillance in Phishing Attacks (source)
- New MFA-bypassing phishing kit targets Microsoft 365, Gmail accounts (source)
- 17,000+ Microsoft Exchange servers in Germany are vulnerable to attack, BSI warns (source)