Microsoft 365 accounts are under attack from new malware spoofing popular work apps

0
4


  • Criminals are using stolen email addresses to distribute malicious OAuth Apps
  • These apps steal sensitive data and redirect people to phishing pages
  • The pages steal login credentials and deliver malware

Hackers are spoofing popular cloud and productivity apps to steal people’s Microsoft 365 login credentials and deliver malware, experts have warned.

Cybersecurity researchers Proofpoint detailed their findings in an X thread, revealing unidentified cybercriminals used compromised Office 365 accounts and email addresses belonging to charity organizations or small businesses to launch the attacks.

LEAVE A REPLY

Please enter your comment!
Please enter your name here