Threat Level: High
A recently-discovered phishing scam pretending to be from the “Office 365 Team” is trying to trick users into their log-in credentials.
The alert notifies the user of an unusual volume of file deletions and urges users to review the activity.
When redirected, the users are encouraged to log-in to a page that is hosted on Azure, increasing the perceived legitimacy of the phishing campaign. The hackers have even gone as far as securing the page with a certificate signed by Microsoft.
It’s important to remember that Microsoft login forms will be coming from microsoft.com, live.com, microsoftonline.com, and outlook.com domains only.
If you think you may have been deceived by a phishing scam, it’s important to contact ITonDemand urgently to begin Incident Response.
For more information on avoiding phishing scams, download our phishing infographic below.
Download our infographic and learn how to identify a phishing scam when you see one.
Other Articles You Might Be Interested In:
In Late July, we covered a cybersecurity incident where hackers gained access to government emails. The cause was a Microsoft cloud breach that used a stolen authentication key. At the time, only 25 organizations were thought to be impacted, including some Western...
When it comes to cybersecurity, it’s a matter of when not if a cyber threat targets your business. Every industry is impacted, with healthcare alone seeing a 74% increase in weekly attacks compared to 2021. Not every type of risk is obvious, either. Whether it’s a...
ITonDemand was created over a decade ago to help support businesses and organizations IT services. We kept hearing from businesses, like yours, that they just wanted their IT to work. And that is what we do. We make your IT work for you.