Cyber Security

Poisoned “Office 365” search results lead to stolen paychecks

A financially motivated hacking group is targeting Canadian employees with a sophisticated campaign designed to covertly redirect their salary payments into attacker-controlled bank accounts, Microsoft researchers discovered. SEO poisoning and malvertising + phishing + AiTM The group, which Microsoft tracks as Storm-2755, begins by poisoning search engine results and running malicious ads against generic queries like “Office 365”, or even common misspellings like “Office 265.” Victims who click through land on a convincing but fake … More

The post Poisoned “Office 365” search results lead to stolen paychecks appeared first on Help Net Security.

Read More

Related Posts

Russia's 'Fancy Bear' APT Continues Its Global Onslaught

Russia's 'Fancy Bear' APT Continues Its Global Onslaught

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

GlassWorm Campaign Uses Zig Dropper to Infect Multiple ...

What vibe hunting gets right about AI threat hunting, and where it breaks down

What vibe hunting gets right about AI threat hunting, a...

EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallet Installs

EngageLab SDK Flaw Exposed 50M Android Users, Including...

Can Anthropic Keep Its Exploit-Writing AI Out of the Wrong Hands?

Can Anthropic Keep Its Exploit-Writing AI Out of the Wr...

Health insurance lead sites sell personal data within seconds of form submission

Health insurance lead sites sell personal data within s...