1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Fake DHL emails allow hackers to breach Microsoft 365 accounts

    From TechnologyDaily@1337:1/100 to All on Wed Jan 18 10:45:03 2023
    Fake DHL emails allow hackers to breach Microsoft 365 accounts

    Date:
    Wed, 18 Jan 2023 10:31:32 +0000

    Description:
    Phishing emails impersonating DHL aim to trick victims into handing over Microsoft 365 credentials.

    FULL STORY ======================================================================

    A new phishing campaign has been uncovered impersonating logistics giant DHL to try and steal Microsoft 365 credentials from victims in the education industry, experts has claimed.

    Cybersecurity researchers from Armorblox recently discovered a major phishing campaign, with more than 10,000 emails sent to inboxes belonging to a private education institution.

    The email is made to look as if its coming from DHL: it carries the company branding as well as tone of voice one might associate with the shipping
    giant. In the email, titled DHL Shipping Document/Invoice Receipt the recipient is informed that a customer sent a parcel to the wrong address and that the correct delivery address needs to be provided. Fake login popup

    The email obviously comes with an attachment, conveniently titled Shipping Document Invoice Receipt which, if opened, looks like a blurred-out preview
    of a Microsoft Excel file.

    Over the blurred-out document pops up a Microsoft login page, trying to trick the victims into thinking they need to log into their Microsoft 365 accounts in order to view the contents of the file. Should the victims provide the login credentials, theyd go straight to the attackers. Read more

    New service makes it easier than ever for rookies to launch Microsoft 365
    phishing attacks


    This Microsoft 365 phishing campaign is using some crafty US government
    lures


    Check out the best firewalls around

    The email attack used language as the main attack vector in order to bypass both Microsoft Office 365 and EOP email security controls, Armorblox explained. These native email security layers are able to block mass spam and phishing campaigns and known malware and bad URLs. However, this targeted email attack bypassed Microsoft email security because it did not include any bad URLs or links and included an HTML file that included a malicious
    phishing form.

    As the researchers said, the attackers used a valid domain which allowed them to bypass Microsofts email authentication checks.

    The best way for businesses to protect against phishing attacks is to train their employees to spot red flags in their inboxes, such as the senders email address, typos and spelling errors in the email, the sense of urgency (legitimate emails will almost never require the user to react urgently), and unexpected links/attachments. We listed the best ID theft protection services today

    Via: SiliconAngle



    ======================================================================
    Link to news story: https://www.techradar.com/news/fake-dhl-emails-allow-hackers-to-breach-microso ft-365-accounts


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)