Pictured: An Office 365 retail pack at the Microsoft Store. (Raysonho @ Open Grid Scheduler / Grid Engine, CC0, via Wikimedia Commons)
Researchers have recently warned of two massive phishing operations, collectively targeting hundreds of thousands of users – one seeking credentials for business services such as Office 365 and the other abusing Facebook Messenger to go after roughly 450,000 of the social media giant’s account holders.
Active since last week, with a major surge on Oct. 15, the Office 365 operation has reached tens of thousands of inboxes through multiple connected campaigns spoofing well-known applications such as Microsoft Office, Microsoft Teams and Zoom in hopes that users will be fooled into giving away their usernames and passwords. Senior executives and finance personnel have been identified as among the targets of the operation.
Discovered by researchers at GreatHorn, the scam also aims to infect victims with JavaScript designed to deploy various malware, including the Cryxos trojan.
According to F-Secure, Cryxos trojans are typically used to conduct call support scams. They display “an alarming notification message saying that the user’s computer or web browser has been ‘blocked’ due to a virus i ..
Support the originator by clicking the read the rest link below.
