Cybercriminals seem to be having a field day with the number of phishing campaigns reported lately. Kaspersky makes the list as the latest entrant in these attacks.
Microsoft had a similar phishing campaign attack a few months ago with the criminals thirsty for credentials.
Servers are safe
The phishing campaign is not linked to one individual as it seems it is a multi-criminal attack. Two phishing campaign kits appear to have been used, namely Iamtheboss and another named MIRCBOOT.
The servers have not been compromised, as the SES token was revoked immediately after the phishing attacks were discovered.
Sourcing for credentials
The cybercriminals made an attempt by camouflaging the phishing messages and redirecting users to the phishing landing pages. The aim was to harvest the victims’ Microsoft credentials.
This enabled them to easily bypass Secure Email Gateway (SEGs) protections and access the victims’ mailboxes.
Users to stay vigilant
Although no servers were compromised or malicious activities were detected, Kaspersky advises its users to be extra vigilant and cautious when asked for their credentials.
If you are unsure where the emails are coming from, you can verify the sender’s identity on Kaspersky’s blog.
What are some of the tips you use to protect yourself from cyber-attacks? Share with us in the comment section below.
If the advices above haven’t solved your issue, your PC may experience deeper Windows problems. We recommend downloading this PC Repair tool (rated Great on TrustPilot.com) to easily address them. After installation, simply click the Start Scan button and then press on Repair All.
Still having issues? Fix them with this tool:
SPONSORED
Email *
Commenting as . Not you?
Comment
