Share this article

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low

Copilot in Outlook will generate personalized themes for you to customize the app

Microsoft will raise the price of its 365 Suite to include AI capabilities

Death Stranding Director’s Cut is now Xbox X|S at a huge discount

Outlook will let users create custom account icons so they can tell their accounts apart easier

Office 365 users at risk as phishing campaign uses Kaspersky’s stolen Amazon SES token

2 min. read

Published onNovember 2, 2021

published onNovember 2, 2021

Share this article

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Key notes

Cybercriminals seem to be having a field day with the number of phishing campaigns reported lately.Kasperskymakes the list as the latest entrant in these attacks.

Microsoft had a similarphishing campaign attacka few months ago with the criminals thirsty for credentials.

Kaspersky security experts have detected phishing attempts that target Office 365 users through the Amazon SES.

The Amazon SES is an email service that allows developers to send emails from any app for different cases.

Servers are safe

The phishing campaign is not linked to one individual as it seems it is a multi-criminal attack. Two phishing campaign kits appear to have been used, namely Iamtheboss and another named MIRCBOOT.

The servers have not been compromised, as the SES token was revoked immediately after the phishing attacks were discovered.

Sourcing for credentials

The cybercriminals made an attempt by camouflaging the phishing messages and redirecting users to the phishing landing pages. The aim was to harvest the victims’ Microsoft credentials.

The cybercriminals used an official Kaspersky email through the Amazon Web Services infrastructure.

This enabled them to easily bypass Secure Email Gateway (SEGs) protections and access the victims’ mailboxes.

Users to stay vigilant

Although no servers were compromised or malicious activities were detected, Kaspersky advises its users to be extra vigilant and cautious when asked for their credentials.

If you are unsure where the emails are coming from, you can verify the sender’s identity onKaspersky’s blog.

What are some of the tips you use to protect yourself from cyber-attacks? Share with us in the comment section below.

Don Sharpe

Tech Journalist

Don has been writing professionally for over 10 years now, but his passion for the written word started back in his elementary school days. His work has been published on Livebitcoinnews.com, Learnbonds.com, eHow, AskMen.com, Forexminute.com, The Writers Network and a host of other companies.

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Don Sharpe

Tech Journalist

Don has been writing professionally for over 10 years now, simplifying the tech universe for the mases.

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low#

Copilot in Outlook will generate personalized themes for you to customize the app#

Microsoft will raise the price of its 365 Suite to include AI capabilities#

Death Stranding Director’s Cut is now Xbox X|S at a huge discount#

Outlook will let users create custom account icons so they can tell their accounts apart easier#

Office 365 users at risk as phishing campaign uses Kaspersky’s stolen Amazon SES token#

Servers are safe#

Sourcing for credentials#

Users to stay vigilant#