A large-scale phishing campaign is targeting your Microsoft Office 365 and Outlook data. A fake voicemail serves as bait.
A new phishing campaign is targeting your Microsoft Office 365 and Outlook data. In order to get to this, the criminals behind the attack send phishing emails that supposedly contain a voicemail. But behind the audio file is actually a malicious link.
This will take you to a phishing page that looks serious, where you should first prove that you are not a robot using the CAPTCHA procedure. This process should give you even more security. You will then be directed to a supposed Microsoft login page. You should register there. If you do that, you pass on your data directly to the scammers. A closer look at the URL makes it clear that you are not on an official site. The following URLs are used for the scam:
- briccorp[.]com
- bajafulfillment[.]com
- bpirnerials[.]com
- lovitafood-tw[.]com
- dorrngroup[.]com
- lacotechs[.]com
- brenthavenhg[.]com
- spasfetech[.]com
- mordematx[.]com
- antarnex[.]com
The Bleeping Computer portal states that the phishing campaign is currently primarily targeting American institutions and their employees. However, it cannot be ruled out that the criminals will spread their scam to other countries. As always, be careful with email attachments. Doesn’t even open files from unknown senders.
Don’t miss anything with the NETWORK-Newsletter
Every Friday: The most informative and entertaining summary from the world of technology!