Tag

Evilproxy

All articles tagged with #evilproxy

cybersecurity2 years ago•2 min saved

"EvilProxy Exploits Open Redirect on indeed.com for Microsoft 365 Phishing"

A phishing campaign targeting Microsoft 365 accounts of key executives in U.S.-based organizations has been discovered, utilizing open redirects from the Indeed employment website. The campaign leverages the EvilProxy phishing service to collect session cookies, bypassing multi-factor authentication. Executives from various industries are being targeted, and the phishing emails contain a legitimate-looking indeed.com link that redirects to a phishing site mimicking Microsoft's login page. The use of reverse proxy kits for phishing, combined with open redirects, is increasing the success of such campaigns.

via BleepingComputer|

#cybersecurity #evilproxy #microsoft-365

cybersecurity2 years ago•2 min saved

EvilProxy Phishing Campaign Exploits Microsoft 365 Users and Executives

EvilProxy, a popular phishing platform, has been used in a large-scale campaign targeting Microsoft 365 accounts. Researchers have observed 120,000 phishing emails sent to over a hundred organizations, primarily impacting high-ranking executives. EvilProxy employs reverse proxies to steal authentication cookies and bypass multi-factor authentication. The campaign impersonates popular brands and utilizes open redirections to evade detection. Once an account is compromised, the threat actors establish persistence by adding their own multi-factor authentication method. Organizations are advised to increase security awareness, implement stricter email filtering rules, and adopt FIDO-based physical keys to defend against this growing threat.

via BleepingComputer|

#account-takeover #cybersecurity #evilproxy