Microsoft Warns of Multi-Stage AitM Phishing and BEC Attack Targeting Banking and Financial Services

Microsoft Warns of Multi-Stage AitM Phishing and BEC Attack Targeting Banking and Financial Services

h2: Microsoft Reports Multi-Stage AitM Phishing and BEC Attack
h3: Banking and Financial Services Targeted

According to Microsoft, a new multi-stage adversary-in-the-middle (AitM) phishing and business email compromise (BEC) attack is currently targeting banking and financial services organizations. The tech giant disclosed that this attack originated from a compromised trusted vendor and transitioned into a series of AiTM attacks and follow-on BEC activity spanning multiple organizations.

h3: The Details on the AitM Attack and BEC Activity

The attack begins with a phishing email that is made to look as though it’s from a trusted vendor, such as a security company or software provider. If the recipient clicks on the link in the email, the attacker can then gain access to the victim’s email account and start sending BEC emails to the victim’s contacts. These BEC emails appear to be legitimate and often contain convincing language that persuades the recipient to transfer funds to the attacker’s account.

In addition to the phishing and BEC activity, the AitM attack involves the attacker intercepting legitimate vendor invoices and modifying them to include their own bank account information. This allows the attacker to receive payments intended for the vendor.

Microsoft has not disclosed the identity of the affected organizations, but they did state that the attack began in early 2021 and has affected multiple organizations across the globe.

h2: Summary

Microsoft has revealed that a new multi-stage AitM phishing and BEC attack is currently targeting banking and financial services organizations. The attack begins with a phishing email that originates from a compromised trusted vendor, with the attacker going on to intercept legitimate vendor invoices and modify them to include their own bank account information. Microsoft has not disclosed the identity of the affected organizations, but they did stress that the attack has affected multiple organizations across the globe.Original Article: https://thehackernews.com/2023/06/microsoft-uncovers-banking-aitm.html


Leave a Reply

Your email address will not be published. Required fields are marked *

0

Your Cart Is Empty

No products in the cart.