Check Point Finds Phishing Scam Using Microsoft Platform
In a recent discovery, Check Point researchers have identified a sophisticated phishing campaign that exploits Microsoft Dynamics 365 Customer Voice, a customer relationship management (CRM) software product. The campaign aims to deceive victims into providing sensitive information, putting the security of millions of organizations worldwide at risk.
Microsoft Dynamics 365 Customer Voice is a popular tool used by businesses to record customer calls, monitor customer reviews, share surveys, and track feedback. With over 2 million organizations worldwide using Microsoft 365, and at least 500,000 organizations utilizing Dynamics 365 Customer Voice, the potential impact of this phishing campaign is substantial.
According to Check Point, the phishing campaign involves a series of fake emails that appear to be sent from Microsoft. The emails claim that the recipient’s Dynamics 365 Customer Voice account has been compromised and that they need to update their login credentials to prevent any further issues. The emails include a link to a phishing website that mimics the legitimate Dynamics 365 Customer Voice login page.
Once clicked, the link redirects the victim to a phishing website that asks for their login credentials, including their username and password. If the victim enters their credentials, the attacker can gain access to their Dynamics 365 Customer Voice account, allowing them to steal sensitive information, install malware, or even take control of the entire account.
The phishing campaign is particularly sophisticated because it uses a technique called “domain spoofing.” This means that the attacker creates a domain that is very similar to the legitimate Microsoft domain, making it difficult for victims to identify the fake email. The attackers also use a technique called “URL spoofing,” where the URL of the phishing website is identical to the legitimate Dynamics 365 Customer Voice login page.
Check Point researchers discovered the phishing campaign while monitoring the Dark Web for malicious activity. They found that the attackers were using a variety of tactics to spread the phishing emails, including sending them to victims who had previously interacted with Microsoft Dynamics 365 Customer Voice.
“It’s alarming to see attackers using sophisticated techniques to target Microsoft Dynamics 365 Customer Voice users,” said Omer Dem, a Check Point researcher. “The fact that they’re using domain spoofing and URL spoofing makes it challenging for victims to identify the fake emails. It’s essential for organizations to be aware of this threat and take steps to protect themselves.”
To protect against this phishing campaign, Check Point recommends that organizations take several steps:
- Be cautious of emails claiming to be from Microsoft or Dynamics 365 Customer Voice. Verify the authenticity of the email by contacting Microsoft directly.
- Avoid clicking on links or downloading attachments from suspicious emails.
- Use strong and unique passwords for all accounts, including Dynamics 365 Customer Voice.
- Enable two-factor authentication (2FA) for all accounts to add an extra layer of security.
- Regularly monitor account activity and report any suspicious activity to Microsoft.
In conclusion, the phishing campaign discovered by Check Point highlights the importance of staying vigilant against phishing attacks. As the use of Microsoft Dynamics 365 Customer Voice continues to grow, it’s essential that organizations take steps to protect themselves against these types of threats.
News Source: https://digitalterminal.in/trending/check-point-uncovers-sophisticated-phishing-campaign-using-microsoft-crm-platform
