Share this article
Improve this guide
Microsoft 365 users: beware of SharePoint phishing attacks
2 min. read
Published onJuly 28, 2020
published onJuly 28, 2020
Share this article
Improve this guide
Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more
Key notes
If you’re a Microsoft 365 user, chances are you’ve usedSharePointto share and manage official documents and content.
The app, which recently received a Yammer integration update, comes in handy when you need to remotely collaborate on business files. Sadly though, threat actors know this too. So they’re now sending spoofedSharePointemails to unsuspecting employees as part of a phishing campaign.
Microsoft 365 user credentials targeted in phishing attacks
The folks at AbnormalSecurityuncovereda phishing campaign that targets corporateSharePointusers. Unfortunately, the end game for the attackers is to collect unsuspecting users’ Microsoft 365 credentials.
They start by sending spoofedSharePointemails addressed to no specific person. By not naming any individual as the recipient, the threat actors aim at tricking as many victims as possible into supplying their Microsoft 365 login details.
This attack impersonates an automated message fromSharepointto send phishing emails. The email itself is not addressed to any specific individual, and is meant to cast a wide net to phish for employees credentials.
However, unlikeprevious similar attacks, this phishing campaign doesn’t create any sense of urgency to get the target to act quickly.
According to AbnormalSecurity, the attackers designed the phishing emails to appear to originate from within the target organization.
As you may expect, each email has a malicious link. And if you click on the link, you end up on a fake Microsoft 365 landing page. The link may take the user to a PDF download page that redirects to another site, in other cases.
Whichever way the link goes, the user ends up on a site that requires Microsoft 365securitycredentials to sign in.
Phishing attacks targeting the users of Microsoft 365 or other cloud-based or on-premises computing tools are a persistentcybersecurityissue. Be sure to guard your IT systems with all you’ve got, fromantivirussolutions toMicrosoft Defender ATP.
For anycybersecurity-related problem or question, write us a message in the comments box below.
[wl_navigator]
More about the topics:Cybersecurity,Microsoft 365
Don Sharpe
Tech Journalist
Don has been writing professionally for over 10 years now, but his passion for the written word started back in his elementary school days. His work has been published on Livebitcoinnews.com, Learnbonds.com, eHow, AskMen.com, Forexminute.com, The Writers Network and a host of other companies.
User forum
0 messages
Sort by:LatestOldestMost Votes
Comment*
Name*
Email*
Commenting as.Not you?
Save information for future comments
Comment
Δ
Don Sharpe
Tech Journalist
Don has been writing professionally for over 10 years now, simplifying the tech universe for the mases.
