1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Thousands of Microsoft 365 accounts under threat from W3LL phishi

    From TechnologyDaily@1337:1/100 to All on Sat Sep 9 08:45:03 2023
    Thousands of Microsoft 365 accounts under threat from W3LL phishing kit

    Date:
    Sat, 09 Sep 2023 08:30:13 +0000

    Description:
    Hundreds of hacking groups are using the kit to target Microsoft 365
    accounts, wreaking havoc among organizations of all verticals.

    FULL STORY ======================================================================

    Hundreds of threat actor groups are using a highly advanced phishing kit to target corporate Microsoft 365 accounts, with relative success, according to
    a new report from cybersecurity experts Group-IB.

    The phishing kit is called W3LL, and its been in development since at least 2017. In that time, the kit grew and improved, and with it - its popularity rose, with more than 500 groups currently using it.

    Those groups have managed to create roughly 850 phishing campaigns, which sought to steal Microsoft 365 credentials from more than 56,000 accounts. Apparently, they succeeded in some 8,000 instances. The result is, the researchers say, millions of dollars in financial losses, and possibly millions of files stolen from endpoints . W3LL phishing attacks

    One of W3LLs key selling propositions is the ability to bypass multi-factor authentication, the experts said. Also, as it covers almost the entire kill chain in a Business Email Compromise (BEC) operation, it can be used by
    crooks of all technical skill levels. Finally, W3LL has its own app store, where cybercriminals can purchase different tools, modules, and such.

    Some of the key tools, as per the report, include SMTP senders PunnySender
    and W3LL Sender, a malicious link stager called W3LL Redirect, a
    vulnerability scanner called OKELO, an automated account discovery utility CONTOOL, and an email validator called LOMPAT.

    W3LLs major weapon, W3LL Panel, may be considered one of the most advanced phishing kits in class, featuring adversary-in-the-middle functionality, API, source code protection, and other unique capabilities, Group-IB explained.

    Phishing is one of the most popular, and basic, attack verticals. Its cheap
    to set up and can easily be automated. With emails wide reach, the potential of phishing attacks is unparalleled. Even today, most cyberattacks start with an email message that either carries a malicious attachment, or a link.

    Via: BleepingComputer More security news from TechRadar Pro What is Elasticsearch and why is it involved in so many data leaks? Microsoft
    customer support database exposed online These are the best firewalls right now



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/thousands-of-microsoft-365-accounts-und er-threat-from-w3ll-phishing-kit


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)