EvilProxy Phishing Campaign Exploits Microsoft 365 Users and Executives
EvilProxy, a popular phishing platform, has been used in a large-scale campaign targeting Microsoft 365 accounts. Researchers have observed 120,000 phishing emails sent to over a hundred organizations, primarily impacting high-ranking executives. EvilProxy employs reverse proxies to steal authentication cookies and bypass multi-factor authentication. The campaign impersonates popular brands and utilizes open redirections to evade detection. Once an account is compromised, the threat actors establish persistence by adding their own multi-factor authentication method. Organizations are advised to increase security awareness, implement stricter email filtering rules, and adopt FIDO-based physical keys to defend against this growing threat.
- EvilProxy phishing campaign targets 120,000 Microsoft 365 users BleepingComputer
- Attackers use EvilProxy phishing kit to take over executives' Microsoft 365 accounts The Record from Recorded Future News
- View Full Coverage on Google News
Reading Insights
0
1
2 min
vs 3 min read
82%
530 → 96 words
Want the full story? Read the original article
Read on BleepingComputer