Attackers are abusing Outlook Groups and Microsoft 365 collaboration features to make phishing campaigns appear routine, according to Fortra. “The technique shifts malicious intent away from a single phishing email into a trusted productivity workflow. A user may see what looks like a normal group addition, internal update, shared resource, or calendar item before being pushed toward an action,” said Daud Jawad, Security Engineer on Fortra’s Intelligence & Threat Management team. The attack begins when … More →
The post Phishing hides in routine Microsoft 365 workflows appeared first on Help Net Security.
http://news.poseidon-us.com/TT9SlH
