Microsoft Warns of Office 365 Phishing Attacks
Healthcare Info Security
Microsoft's Security Intelligence team is warning users of the Office 365 suite about an ongoing phishing campaign that appears to be harvesting victims' credentials.
The phishing emails, which are still circulating, use several techniques to bypass and evade secure email gateways, according to Microsoft's analysis. The fraudsters use social engineering techniques and timely subject lines as a way to lure victims into clicking the emails and inputting their credentials, which are then harvested.
"The campaign uses timely lures relevant to remote work, like password updates, conferencing info and helpdesk tickets," according to the report.
The evasion techniques...