Security News > 2024 > July > Microsoft 365 users targeted by phishers abusing Microsoft Forms
There has been an uptick in phishing campaigns leveraging Microsoft Forms this month, aiming to trick targets into sharing their Microsoft 365 login credentials.
Malicious forms leading to phishing pages impersonating Microsoft 365 and Adobe.
Microsoft Forms is part of the Microsoft 365 product suite, and is used to gather feedback and information via survey, quizzes and polls.
The links take users to a Microsoft 365 or Adobe phishing page.
While Microsoft reacted to the threat by implementing automated phishing prevention to detect malicious password collection in forms and surveys, it's obvious that it's not always successful at recognizing malicious embedded links.
"Attackers enhance their forms' credibility by using convincing page titles and known favicons. Favicons are small icons displayed in the browser tab, and by using Microsoft familiar icons, attackers increase the perceived legitimacy of their fake pages. These visual cues can easily trick users into believing they are on a genuine Microsoft site," Perception Point researchers noted.
News URL
https://www.helpnetsecurity.com/2024/07/29/microsoft-365-phishing-forms/
Related news
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Microsoft 365 Admin portal abused to send sextortion emails (source)
- Microsoft now testing hotpatch on Windows 11 24H2 and Windows 365 (source)
- Microsoft 365 outage impacts Exchange Online, Teams, Sharepoint (source)
- Phishing-as-a-Service "Rockstar 2FA" Targets Microsoft 365 Users with AiTM Attacks (source)
- New Rockstar 2FA phishing service targets Microsoft 365 accounts (source)
- Microsoft 365 outage takes down Office web apps, admin center (source)
- CISA orders federal agencies to secure Microsoft 365 tenants (source)
- Microsoft 365 users hit by random product deactivation errors (source)