Microsoft 365 accounts hit by millions of password thefts due to phishing emails disguised as tax-related alerts.
These cyber-attacks tricked users into handing cyber criminals their usernames and passwords. These phishing attacks aim to trick users and steal their passwords by disguising malicious emails.
The disguise can include notifications from the IRS or Revenue Canada, reset Microsoft 365 passwords from Microsoft, and many others. The end result is they are after password thefts.
Recently, Barracuda Networks detected a cyber-attack attempt to steal user passwords. This specific threat was designed for Microsoft 365 users and to lure victims claiming to be tax forms or other official documents.
If unsuspecting users clicked the link, they would download and open the malicious document. Once the document opens, a macro PowerShell would launch in the background while the victim views the document.
Tens of millions of people have been affected by these phishing emails and password theft is increasing as hackers are constantly shifting their goals and strategies.
Ransomware is still a large threat as well as password stealers that are appearing in phishing emails, and browser extensions.
Your security is only as strong as your weakest link. For a quick security review, feel free to watch our Security Awareness User training video.
Our video will cover phishing, malware, complex password, two-factor authentication, secure connections, and public WiFi.
Our complimentary network and security assessment can put your IT infrastructure and business to the test.
365 iT SOLUTIONS is Toronto’s leading IT consulting boutique firm offering industry-leading IT solutions including Managed IT Services, IT Support Services, IT Outsourcing Services, Tech Support Services and Cloud Services.
