Phishing attack evades Microsoft 365 security

Researchers at email protection company Armorblox have uncovered a targeted email phishing attack designed to get past Microsoft 365 security. The attack is a variant of 'PerSwaysion', a recent spate of credential phishing attacks that utilize compromised accounts and leverage Microsoft file-sharing services to lull victims into a false sense of security. A message sent from a compromised vendor account claims to contain important invoice information. The email includes a link to view the invoice, taking readers to a legitimate OneDrive page that is then used to host the final payload, a credential phishing page. The entire flow has been… [Continue Reading]