Credential Theft

Microsoft

6270804c80f63d207f6e67a8 microsoft phishing 20220429

627080514b0451d0c2eee417 microsoft phishing 20220429b

Spoofed Email Address

Employee Incentive

Fake Document

Credential Phishing

Link-based

HR@[Recipient Company Domain] shared a folder with you.‍Please upload your documents in the bonus folder for 2022. . ‍Bonus Payments 2022 ‍This link will work for [Recipient Email Address].. ‍Open‍

Robinhood Account Verification Credential Phishing Attack

Metamask Account Verification Cryptocurrency Credential Phishing Attack

Fake Malware Infection Extortion Attack

Homepage

The Abnormal Attack Vault

Microsoft Employee Incentive Fake Document Credential Phishing Attack

Breadcrumbs

Discover the tactics, goal, and vector of a real-world email attack blocked by Abnormal Security.

description

https://intelligence.abnormalsecurity.com/attack-vault/link-based-microsoft-credential-phishing-attack-2

referrer

robots

{"title":{"title":"Abnormal Intelligence | Microsoft Employee Incentive Fake Document…"}}

This link-based attack impersonates Microsoft using email spoofing, an employee incentive theme, and a fake document theme to steal credentials.

Subscribe to our monthly newsletter to receive the latest insights from our team directly in your inbox.

Abnormal Intelligence Email Subscribe

Top Bar

New BEC Insights from Chris Krebs, Former Director of CISA

Microsoft Employee Incentive Fake Document Credential Phishing Attack

Email Content

Subject

Body

Analysis Overview

Type

Vector

Goal

Tactic

Theme

Impersonated Brands