Eblogtip.com
  • Categories
    • News
    • Technology
    • Domains
    • Hosting
    • Promotions

Archives

  • September 2023
  • August 2023
  • July 2023
  • June 2023
  • May 2023
  • December 2022

Categories

  • News
  • Technology
  • Uncategorized
eBlogTip
  • Categories
    • News
    • Technology
    • Domains
    • Hosting
    • Promotions
  • News

More Microsoft 365 phishing attacks are using this dangerous new method – here’s what you need to know

  • May 26, 2023
Total
0
Shares
0
0
0


Modern-day phishing methods include abusing legitimate cloud services to bypass email security solutions and land a malicious email right into the victim’s inbox. 

In this latest example, cybersecurity researchers from Trustwave found a threat actor abusing Microsoft’s Rights Management Services (RMS) to deliver links to fake landing pages to their victims. The attacks are highly targeted and quite difficult to mitigate, the researchers are saying.

In the attack, the threat actors will use a previously stolen email account to send a message to their victim. The message will contain an attachment created using the RSM service, meaning it will be encrypted and will carry the .RPMSG extension. Microsoft designed RSM to offer an additional layer of protection for sensitive files, by forcing readers to first authenticate. 

Stealing sensitive data

The authentication can be done either using the Microsoft account, or via a one-time passcode.

Once the users authenticate and be granted the ability to read the message, they’ll be redirected to a fake SharePoint document hosted on Adobe’s InDesign service. The document holds a “Click Here to View Document” call-to-action, which brings the users to an empty page with a “Loading” message. This is merely a distraction, while a malicious script siphons sensitive data in the background.

The data includes visitor ID, connect token and hash, video card renderer information, system language, device memory, hardware concurrency, installed browser plugins, browser window details, and OS architecture. Once this process is complete, the page will reload into a fake Microsoft 365 login form that steals the visitor’s login credentials and sends them to the attackers. 

“Educate your users on the nature of the threat, and not to attempt to decrypt or unlock unexpected messages from outside sources,” Trustwave said in its report. 

“To help prevent Microsoft 365 accounts being compromised, enable Multi-Factor Authentication (MFA).”

Multi-factor authentication is not foolproof but does make the threat actors work a lot harder to gain access to their target’s endpoints. Given that it’s quite simple to set up, MFA is praised in the cybersecurity community and is considered the industry standard. 

Via: BleepingComputer


Source link

Total
0
Shares
Share 0
Tweet 0
Pin it 0
Previous Article
  • News

New Hulu movies: the biggest films to stream in May 2023

  • May 26, 2023
View Post
Next Article
  • Technology

Sam Altman shares his optimistic view of our AI future

  • May 26, 2023
View Post
You May Also Like
View Post
  • News

iPhone 16 Pro Max: latest news, rumors and everything we know so far

  • September 23, 2023
View Post
  • News

LG to launch new smart monitors that can open documents without a PC —but shame they’re not 4K

  • September 23, 2023
View Post
  • News

ICYMI: the 9 biggest tech stories of the week, from iPhone reviews to new Amazon Alexa AI

  • September 23, 2023
View Post
  • News

Sliced and diced – thousands of Pizza Hut customers hacked and password stolen

  • September 23, 2023
View Post
  • News

Quordle today – hints and answers for Saturday, September 23 (game #607)

  • September 22, 2023
View Post
  • News

Apple HomePod finally gets hands-free Spotify thanks to this iOS 17 workaround

  • September 22, 2023
View Post
  • News

Switching to an iPhone 15 from an older iPhone? Do this first and thank us later

  • September 22, 2023
View Post
  • News

This malicious fake YouTube app could hijack your phone and record all your secrets

  • September 22, 2023

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

eBlogTip.com
  • Categories

Input your search keywords and press Enter.