Security News > 2021 > October > Phishing attack exploits Craigslist and Microsoft OneDrive
That's true of a new phishing campaign that uses both Craigslist and OneDrive to trick people into installing malware.
Clicking on a button in the email was supposed to take people to a form document that had been uploaded to an actual Microsoft OneDrive site.
The phishing messages themselves came from a Craigslist domain and an authentic Craigslist IP address.
Since Craigslist didn't intend to send these emails, Inky believes the site may have been compromised, especially since the users were specifically targeted.
Further, the attackers used a legitimate Microsoft OneDrive site, impersonated DocuSign to give the operation an air of authenticity and flashed Norton and Microsoft logos to lend additional credibility to the message and the resulting form.
In the campaign described by Inky, it makes no sense that a Craigslist problem would be resolved through a document uploaded to OneDrive.
News URL
Related news
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- Microsoft Teams phishing attack alerts coming to everyone next month (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
- Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks (source)
- Criminal IP: Bringing Real-Time Phishing Detection to Microsoft Outlook (source)
- Microsoft fixes OneDrive bug causing macOS app freezes (source)
- New Web3 attack exploits transaction simulations to steal crypto (source)
- Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)