1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Microsoft customer feedback tool hijacked to send phishing emails

    From TechnologyDaily@1337:1/100 to All on Fri Nov 4 15:30:04 2022
    Microsoft customer feedback tool hijacked to send phishing emails

    Date:
    Fri, 04 Nov 2022 15:12:08 +0000

    Description:
    More legitimate Microsoft have been tools abused to steal login credentials from unsuspecting users.

    FULL STORY ======================================================================

    Cybercriminals are trying to trick Microsoft Dynamics 365 Customer Voice
    users into giving away their login credentials with a devious new phishing campaign, experts have warned,

    A report from Avanan has revealed threat actors would send out a notification email through Dynamics 365 Customer Voice, which states that the customer had left a voice message. With the email itself looking a lot like an important voicemail from the customer, and the link being legitimate, clicking on it is the natural step, the researchers said.

    Dynamics 365 Customer Voice is Microsofts customer relationship management ( CRM ) tool that businesses use to survey customers, monitor and organize customer feedback, and turn feedback data into actionable insights. Whats more, businesses can use it to interact with their customers via phone. The data generated through these interactions is stored, which is what crooks are trying to leverage. No one blocks Microsoft

    But the Play Voicemail button actually redirects the victims to a phishing landing page that looks almost identical to a login page from Microsoft. Should users try to log in, their credentials would end up in the hands of
    the fraudsters.

    Hackers continually use what we call The Static Expressway to reach
    end-users, the researchers explain. In short, its a technique that leverages legitimate sites to get past security scanners. The logic is this: Security services cant outright block Microsoftit would be impossible to get any work done. Instead, these links from trusted sources tend to be automatically trusted. That has created an avenue for hackers to insert themselves. Read more

    Everything you need to know about phishing


    Office 365 phishing scam uses legitimate Oracle and AWS services


    Here are the best malware removal tools on the market

    The method of abusing legitimate services to distribute malicious messages is gaining a lot of traction lately, the researchers added, saying theyve seen Facebook, PayPal, QuckBooks, and others, abused for this purpose.

    It is incredibly difficult for security services to suss out what is real and what is nested behind the legitimate link. Plus, many services see a known good link and, by default, dont scan it. Why scan something good? Thats what hackers are hoping for, they say.

    The attack is relatively sophisticated due to the fact that the actual phishing link doesnt appear before the final step. It would be important to remind users to look at all URLs, even when they are not in an email body, they warn. Check out the best endpoint protection services out there



    ======================================================================
    Link to news story: https://www.techradar.com/news/microsoft-customer-feedback-tool-hijacked-to-se nd-phishing-emails/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)