PIXM, pioneers of the first real-time AI computer vision solution, has published its latest blog focusing on ongoing phishing activity beginning in November 2023 that is linked to two prominent threat groups: Tycoon and Storm-1575.
These MFA spear phishing attacks used common attack Phishing-as-a-Service (PhaaS) platforms and stealthy attack patterns – including Adversary-in-the-Middle (AiTM), social engineering, customized logins and robust and large-scale infrastructure – to target officials at large US school districts with the purpose of compromising key administrator email accounts and ultimately delivering ransomware.
In this attack, the school’s Chief of Human Capital and multiple finance and payroll administrators received targeted phishing emails providing them with a link to update their passwords to secure their account. Ultimately, victims were directed to pages requesting two-factor authentication codes, thus completely bypassing MFA protections.
You can read this blog here: https://pixmsecurity.com/blog/uncategorized/us-public-school-districts-targeted-mfa-spear-phishing-campaigns-on-the-rise
Related
This entry was posted on March 6, 2024 at 9:01 am and is filed under Commentary with tags PIXM. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
New Research Links Threat Groups to Phishing Campaigns Targeting US Public School Districts
PIXM, pioneers of the first real-time AI computer vision solution, has published its latest blog focusing on ongoing phishing activity beginning in November 2023 that is linked to two prominent threat groups: Tycoon and Storm-1575.
These MFA spear phishing attacks used common attack Phishing-as-a-Service (PhaaS) platforms and stealthy attack patterns – including Adversary-in-the-Middle (AiTM), social engineering, customized logins and robust and large-scale infrastructure – to target officials at large US school districts with the purpose of compromising key administrator email accounts and ultimately delivering ransomware.
In this attack, the school’s Chief of Human Capital and multiple finance and payroll administrators received targeted phishing emails providing them with a link to update their passwords to secure their account. Ultimately, victims were directed to pages requesting two-factor authentication codes, thus completely bypassing MFA protections.
You can read this blog here: https://pixmsecurity.com/blog/uncategorized/us-public-school-districts-targeted-mfa-spear-phishing-campaigns-on-the-rise
Share this:
Like this:
Related
This entry was posted on March 6, 2024 at 9:01 am and is filed under Commentary with tags PIXM. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.