The Latest in IT Security

Phishers using Zix to “legitimize” emails in the eyes of Office 365 users

12
May
2021
Phishers using Zix to “legitimize” emails in the eyes of Office 365 users

image credit: pixabay

A phishing campaign aimed at harvesting Office 365 account credentials is employing a variety of tricks to fool both email security sistems and recipients: the phishing emails come from a compromised enterprise account, through the secure email system Zix, to make recipients believe that the offered link isn’t malicious.

The phishing email

The phishing emails are sent from a compromised email account belonging to a real estate services provider (Authentic Title, LLC), and ostensibly contain a closing settlement counter offer. To view it, the recipients are asked to follow a link included in the email.

Related posts:
  1. DocuSign Phishing Campaign Uses COVID-19 as Bait
  2. Russian Hacker Group Continues Stealing Money From Industrial Enterprises
  3. How to prepare for an effective phishing attack simulation
  4. Fake copyright violation notice aimed at stealing Facebook accounts
  5. Microsoft Office 365 Attacks Sparked from Google Firebase

Read More

Tags:  
Written by Feedproxy
0 Comments
Comments are closed.

Categories

THURSDAY, APRIL 25, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments