![]() ![]() The victims believe they are downloading an MP3 file, but what is actually called is a fake login page that is similar to Office 365. If they open the alleged voice message, users are redirected to a page on which a fake download progress bar is running. The e-mail accounts of high-ranking employees or company management are misused in order to get other employees of the same company or external business partners to initiate fraudulent money transfers.Īccording to Microsoft experts, victims receive deceptive emails with a malicious HTML file attached. The campaign in question is apparently aimed at CEO fraud (also: Business Email Compromise, BEC for short). More than 10,000 companies have already been attacked since September 2021, as the US technology company announced on its blog in mid-July. ![]() In some cases, attackers even succeed in bypassing multi-factor authentication (MFA) using man-in-the-middle techniques. According to the experts, over 10,000 companies have been attacked since September 2021.Īs part of the phishing campaign uncovered by Microsoft, HTTPS proxy techniques are used to hack Office 365 accounts. Microsoft security researchers have uncovered a large-scale phishing campaign that compromises Office 365 accounts despite multi-factor authentication. Phishing: Office 365 accounts hacked despite MFA ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |