Newly uncovered attack campaign bypasses email security measures by leveraging Microsoft-signed emails. What Microsoft 365 users need to know and do.
Update, March 15, 2025: This story, originally published March 13, has been updated with further technical detail regarding the Microsoft 365 email attack flow as well as a statement from Dor Eisner, CEO at Guardz .
In a March 13 report, Ron Lev, a security researcher at Guardz Research, explained that as e-mail defenses such as secure email gateways continue to evolve, so attackers are finding they need to refine their evasion techniques to bypass these more robust protections. Indeed, as Lev pointed out, the leveraging of Microsoft’s legitimate email infrastructure means that the phishing email can pass through Microsoft’s servers without raising any security alerts. What’s more, as it originates from such a trusted source, it is also far less likely to be flagged by security tools as it makes its way to the victim’s inbox. I recommend reading the
Technical configuration: Having established control over the Microsoft 365 tenants in step one, the threat actors will then create administrative accounts that use the known default of an .onmicrosoft.com domain. “The key tactics include admin account creation, mail forwarding abuse, and anti-phishing evasion,” Lev explained.
Microsoft 365 Microsoft Attack Microsoft Email Attack Guardz Microsoft 365 Phishing Campaign Microsoft 365 Cyberattack Microsoft Security Warning Microsoft 365 Security Warning
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Microsoft 365 Security Warning As URL Hackers Exploit The @ GapMind the gap, the gap. Security experts have issued a critical warning as Microsoft 365 users are targeted in a new threat campaign.
Read more »
New Microsoft 365 Attack Bypasses Email Security ControlsNewly uncovered attack campaign bypasses email security measures by leveraging Microsoft-signed emails. What Microsoft 365 users need to know and do.
Read more »
Amazon selects Zoom as main meeting app, launches Microsoft 365 toolsBusiness Insider tells the global tech, finance, stock market, media, economy, lifestyle, real estate, AI and innovative stories you want to know.
Read more »
Widespread Microsoft Outages Impact Outlook, Exchange, Teams, and 365Microsoft is experiencing a major outage affecting multiple key services, including Outlook, Exchange, Teams, Microsoft 365, and Azure. Users worldwide are reporting issues accessing these platforms, with a concentration of reports in major US cities.
Read more »
Microsoft 365 Outage Impacts Thousands of UsersThousands of users reported experiencing a widespread outage affecting various Microsoft 365 services, including Outlook. Microsoft acknowledged the issue and is working to restore service.
Read more »
Microsoft 365 Suffers Widespread Outages, Affecting Outlook and Other ServicesThousands of Microsoft 365 users report issues accessing services like Outlook on Saturday. Microsoft investigates and identifies a potential cause, reverting code to alleviate impact. Most services gradually recover.
Read more »