Today, the KnowBe4 Threat Lab released a threat alert detailing a surge of phishing attacks that have been hijacking legitimate Microsoft communications.
This spike comes amid a rise in the exploitation of trusted platforms like DocuSign, PayPal, Google Drive, and Salesforce for phishing emails.
In this attack, cybercriminals hijacked a legitimate Microsoft invoice and used mail flow rules to auto-forward it to thousands of recipients. By setting up their own Microsoft domain, the attackers ensured the emails passed authentication protocols. They then embedded a fake organization name as their own, which appeared in the body of the email, to socially engineer the victim to call the number present in that ‘name’. Other than this the attacks had no other payload and all links present are legitimate.
The alert can be read in full here: https://blog.knowbe4.com/surge-in-phishing-attacks-hijacking-legitimate-microsoft-communications
Like this:
Like Loading...
Related
This entry was posted on March 27, 2025 at 11:50 am and is filed under Commentary with tags KnowBe4. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
KnowBe4 Spots Surge in Phishing Attacks Hijacking Legitimate Microsoft Communication
Today, the KnowBe4 Threat Lab released a threat alert detailing a surge of phishing attacks that have been hijacking legitimate Microsoft communications.
This spike comes amid a rise in the exploitation of trusted platforms like DocuSign, PayPal, Google Drive, and Salesforce for phishing emails.
In this attack, cybercriminals hijacked a legitimate Microsoft invoice and used mail flow rules to auto-forward it to thousands of recipients. By setting up their own Microsoft domain, the attackers ensured the emails passed authentication protocols. They then embedded a fake organization name as their own, which appeared in the body of the email, to socially engineer the victim to call the number present in that ‘name’. Other than this the attacks had no other payload and all links present are legitimate.
The alert can be read in full here: https://blog.knowbe4.com/surge-in-phishing-attacks-hijacking-legitimate-microsoft-communications
Share this:
Like this:
Related
This entry was posted on March 27, 2025 at 11:50 am and is filed under Commentary with tags KnowBe4. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.